|
257401
|
- |
|
fascript
|
fapersianhack
|
SQL injection vulnerability in class/show.php in FaScript FaPersianHack 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to show.php.
|
CWE-89
SQL Injection
|
CVE-2008-0326
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257402
|
- |
|
fascript
|
famp3
|
SQL injection vulnerability in show.php in FaScript FaMp3 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0327
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257403
|
- |
|
fascript
|
faname
|
SQL injection vulnerability in page.php in FaScript FaName 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0328
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257404
|
- |
|
julien_plesniak
|
lulieblog
|
LulieBlog 1.0.1 and 1.0.2 does not restrict access to (1) article_suppr.php, (2) comment_accepter.php, and (3) comment_refuser.php in Admin/, which allows remote attackers to accept comments, delete …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0329
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257405
|
- |
|
miniweb_http_server
|
miniweb_http_server
|
Heap-based buffer overflow in the _mwProcessReadSocket function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to execute arbitrary code via a long URI.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0337
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257406
|
- |
|
miniweb_http_server
|
miniweb_http_server
|
Directory traversal vulnerability in the mwGetLocalFileName function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to read arbitrary files and list arbitrary directories via a (1) .…
|
CWE-22
Path Traversal
|
CVE-2008-0338
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257407
|
- |
|
evilsentinel
|
evilsentinel
|
admin/index.php in Evilsentinel 1.0.9 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to gain administrative privileges and make arbitrary configurati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0350
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257408
|
- |
|
evilsentinel
|
evilsentinel
|
admin/config.php in Evilsentinel 1.0.9 and earlier allows remote attackers to bypass the CAPTCHA test by omitting the es_security_captcha parameter and not invoking captcha.php.
|
CWE-287
Improper Authentication
|
CVE-2008-0351
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257409
|
- |
|
linux
|
linux_kernel
|
The Linux kernel 2.6.20 through 2.6.21.1 allows remote attackers to cause a denial of service (panic) via a certain IPv6 packet, possibly involving the Jumbo Payload hop-by-hop option (jumbogram).
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0352
|
2017-09-29 10:30 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257410
|
- |
|
php-residence
|
php-residence
|
SQL injection vulnerability in visualizza_tabelle.php in php-residence 0.7.2 and 1.0 allows remote attackers to execute arbitrary SQL commands via the cognome_cerca parameter. NOTE: some of these de…
|
CWE-89
SQL Injection
|
CVE-2008-0353
|
2017-09-29 10:30 |
2008-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
