|
257441
|
- |
|
slaed
|
slaed_cms
|
Directory traversal vulnerability in function/sources.php in SLAED CMS 2.5 Lite allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the newlang parameter to ind…
|
CWE-22
Path Traversal
|
CVE-2008-0458
|
2017-09-29 10:30 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257442
|
- |
|
liquidsilvercms
|
liquidsilvercms
|
Directory traversal vulnerability in update/index.php in Liquid-Silver CMS 0.35, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot …
|
CWE-22
Path Traversal
|
CVE-2008-0459
|
2017-09-29 10:30 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257443
|
- |
|
francisco_burzi
|
php-nuke
|
SQL injection vulnerability in index.php in the Search module in PHP-Nuke 8.0 FINAL and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the s…
|
CWE-89
SQL Injection
|
CVE-2008-0461
|
2017-09-29 10:30 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257444
|
- |
|
absofort
|
aconon_mail_enterprise_sql
|
Directory traversal vulnerability in archiv.cgi in absofort aconon Mail 2007 Enterprise SQL 11.7.0 and Mail 2004 Enterprise SQL 11.5.1 allows remote attackers to read arbitrary files via a .. (dot do…
|
CWE-22
Path Traversal
|
CVE-2008-0464
|
2017-09-29 10:30 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257445
|
- |
|
seagullproject.org
|
seagull
|
Directory traversal vulnerability in optimizer.php in Seagull 0.6.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the files parameter.
|
CWE-22
Path Traversal
|
CVE-2008-0465
|
2017-09-29 10:30 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257446
|
- |
|
seagullproject.org
|
seagull
|
The vendor has released a patch for 0.6.3. A patch can be found at the following location:
http://seagullproject.org/download/
|
CWE-22
Path Traversal
|
CVE-2008-0465
|
2017-09-29 10:30 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257447
|
- |
|
flinx
|
flinx
|
SQL injection vulnerability in category.php in Flinx 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0468
|
2017-09-29 10:30 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257448
|
- |
|
comodo
microsoft
|
comodo_antivirus
activex
|
A certain ActiveX control in Comodo AntiVirus 2.0 allows remote attackers to execute arbitrary commands via the ExecuteStr method.
|
NVD-CWE-Other
|
CVE-2008-0470
|
2017-09-29 10:30 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257449
|
- |
|
move_networks_inc
|
move_media_player
|
Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0477
|
2017-09-29 10:30 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257450
|
- |
|
setcms
|
setcms
|
Directory traversal vulnerability in index.php in SetCMS 3.6.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the set parameter, as demonstrated by sending…
|
CWE-22
Path Traversal
|
CVE-2008-0478
|
2017-09-29 10:30 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
