|
257221
|
- |
|
xerox
|
phaser
|
The Xerox Phaser 8400 allows remote attackers to cause a denial of service (reboot) via an empty UDP packet to port 1900.
|
CWE-20
Improper Input Validation
|
CVE-2008-3571
|
2017-09-29 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257222
|
- |
|
hydrairc
|
hydrairc
|
HydraIRC 0.3.164 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a long irc:// URI.
|
CWE-20
Improper Input Validation
|
CVE-2008-3578
|
2017-09-29 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257223
|
- |
|
qsoft
|
k-links
|
Multiple SQL injection vulnerabilities in Qsoft K-Links allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to visit.php, or the PATH_INFO to the default URI under (2) r…
|
CWE-89
SQL Injection
|
CVE-2008-3580
|
2017-09-29 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257224
|
- |
|
qsoft
|
k-links
|
Cross-site scripting (XSS) vulnerability in index.php in Qsoft K-Links allows remote attackers to inject arbitrary web script or HTML via the login_message parameter in a login action.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3581
|
2017-09-29 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257225
|
- |
|
intellitamper
|
intellitamper
|
Buffer overflow in the HTML parser in IntelliTamper 2.07 allows remote attackers to execute arbitrary code via a long URL in the SRC attribute of an IMG element. NOTE: this might be related to CVE-2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3583
|
2017-09-29 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257226
|
- |
|
pozscripts
|
greencart_php_shopping_cart
|
Multiple SQL injection vulnerabilities in PozScripts GreenCart PHP Shopping Cart allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) product_desc.php and (2) store_in…
|
CWE-89
SQL Injection
|
CVE-2008-3585
|
2017-09-29 10:31 |
2008-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257227
|
- |
|
joomla
|
com_ezstore
|
SQL injection vulnerability in the EZ Store (com_ezstore) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-3586
|
2017-09-29 10:31 |
2008-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257228
|
- |
|
phsblog
|
phsblog
|
Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) eid parameter to comments.php, (2) cid parameter to index.php, and the (3)…
|
CWE-89
SQL Injection
|
CVE-2008-3588
|
2017-09-29 10:31 |
2008-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257229
|
- |
|
mozilo
|
mozilocms
|
Directory traversal vulnerability in download.php in moziloCMS 1.10.1, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the cat parameter.
|
CWE-22
Path Traversal
|
CVE-2008-3589
|
2017-09-29 10:31 |
2008-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257230
|
- |
|
21degrees
|
symphony
|
SQL injection vulnerability in lib/class.admin.php in Twentyone Degrees Symphony 1.7.01 and earlier allows remote attackers to execute arbitrary SQL commands via the sym_auth cookie in a /publish/fil…
|
CWE-89
SQL Injection
|
CVE-2008-3591
|
2017-09-29 10:31 |
2008-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
