|
257171
|
- |
|
phpfootball
|
phpfootball
|
SQL injection vulnerability in show.php in PHPFootball 1.6 allows remote attackers to execute arbitrary SQL commands via the dbtable parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3387
|
2017-09-29 10:31 |
2008-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257172
|
- |
|
mojoscripts
|
mojopersonals
|
SQL injection vulnerability in mojoClassified.cgi in MojoPersonals allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3403
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257173
|
- |
|
nazgulled
|
nzfotolog
|
Directory traversal vulnerability in index.php in Ricardo Amaral nzFotolog 0.4.1 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action_f…
|
CWE-22
Path Traversal
|
CVE-2008-3405
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257174
|
- |
|
phplinkat
|
phplinkat
|
SQL injection vulnerability in showcat.php in phpLinkat 0.1 allows remote attackers to execute arbitrary SQL commands via the catid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3406
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257175
|
- |
|
phplinkat
|
phplinkat
|
phpLinkat 0.1 allows remote attackers to bypass authentication and access unspecified pages under admin/ by sending a login=right cookie.
|
CWE-287
Improper Authentication
|
CVE-2008-3407
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257176
|
- |
|
coolplayer
|
coolplayer
|
Stack-based buffer overflow in CoolPlayer 2.18, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a crafted m3u file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3408
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257177
|
- |
|
ecshop
|
epshop
|
SQL injection vulnerability in Comsenz EPShop (aka ECShop) before 3.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter in a (1) pro_show or (2) disppro action to the de…
|
CWE-89
SQL Injection
|
CVE-2008-3412
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257178
|
- |
|
greatclone
|
auction_platinum
|
SQL injection vulnerability in category.php in Greatclone GC Auction Platinum allows remote attackers to execute arbitrary SQL commands via the cate_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3413
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257179
|
- |
|
greatclone
|
auction_platinum
|
Additional source found during analysis:
http://www.securityfocus.com/bid/30389
|
CWE-89
SQL Injection
|
CVE-2008-3413
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257180
|
- |
|
siteadmin
|
cms
|
SQL injection vulnerability in line2.php in SiteAdmin allows remote attackers to execute arbitrary SQL commands via the art parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3414
|
2017-09-29 10:31 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
