|
257431
|
- |
|
360_web_manager
|
360_web_manager
|
SQL injection vulnerability in form.php in 360 Web Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the IDFM parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0430
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257432
|
- |
|
idmos
|
idmos_cms
|
Directory traversal vulnerability in administrator/download.php in IDMOS (aka Phoenix) 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the fileName parameter.
|
CWE-22
Path Traversal
|
CVE-2008-0431
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257433
|
- |
|
ozjournals
|
ozjournals
|
Directory traversal vulnerability in index.php in OZJournals 2.1.1 allows remote attackers to read portions of arbitrary files via a .. (dot dot) in the id parameter in a printpreview action.
|
CWE-22
Path Traversal
|
CVE-2008-0435
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257434
|
- |
|
hp
microsoft
|
virtual_rooms
activex
|
Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote attackers to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0437
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257435
|
- |
|
alstrasoft
|
forum_pay_per_post_exchange
|
AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts.
|
CWE-255
Credentials Management
|
CVE-2008-0440
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257436
|
- |
|
lycos
|
fileuploader.dll
|
Heap-based buffer overflow in the FileUploader.FUploadCtl.1 ActiveX control in FileUploader.dll 2.0.0.2 in Lycos FileUploader Module allows remote attackers to execute arbitrary code via a long Handw…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0443
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257437
|
- |
|
julian_pawlowski
|
lulieblog
|
SQL injection vulnerability in voircom.php in LulieBlog 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0446
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257438
|
- |
|
foojan
|
php_weblog
|
SQL injection vulnerability in index.php in Foojan WMS PHP Weblog 1.0 allows remote attackers to execute arbitrary SQL commands via the story parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0447
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257439
|
- |
|
siteman
|
siteman
|
Directory traversal vulnerability in articles.php in Siteman 1.1.9 allows remote attackers to read arbitrary files via directory traversal sequences in the cat parameter in a viewart action.
|
CWE-22
Path Traversal
|
CVE-2008-0452
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257440
|
- |
|
easysitenetwork
|
recipe_website_script
|
SQL injection vulnerability in list.php in Easysitenetwork Recipe allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0453
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
