|
257541
|
- |
|
nuboard
|
nuboard
|
SQL injection vulnerability in threads.php in Nuboard 0.5 allows remote attackers to execute arbitrary SQL commands via the ssid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0796
|
2017-09-29 10:30 |
2008-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257542
|
- |
|
joomla
mambo
|
com_quiz
|
SQL injection vulnerability in index.php in the Quiz (com_quiz) 0.81 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a u…
|
CWE-89
SQL Injection
|
CVE-2008-0799
|
2017-09-29 10:30 |
2008-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257543
|
- |
|
joomla
|
com_mcquiz
|
SQL injection vulnerability in index.php in the McQuiz (com_mcquiz) 0.9 Final component for Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw a…
|
CWE-89
SQL Injection
|
CVE-2008-0800
|
2017-09-29 10:30 |
2008-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257544
|
- |
|
paxxgallery
|
com_paxxgallery
|
SQL injection vulnerability in index.php in the PAXXGallery (com_paxxgallery) 0.2 component for Mambo and Joomla! allow remote attackers to execute arbitrary SQL commands via (1) the iid parameter in…
|
CWE-89
SQL Injection
|
CVE-2008-0801
|
2017-09-29 10:30 |
2008-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257545
|
- |
|
joomla
mediaslide
|
com_mediaslide
|
SQL injection vulnerability in index.php in the MediaSlide (com_mediaslide) 0.5 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the albumnum parameter in a contact…
|
CWE-89
SQL Injection
|
CVE-2008-0802
|
2017-09-29 10:30 |
2008-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257546
|
- |
|
thecus
|
n5200pro_nas_server_control_panel
|
PHP remote file inclusion vulnerability in usrgetform.html in Thecus N5200Pro NAS Server allows remote attackers to execute arbitrary PHP code via a URL in the name parameter.
|
CWE-94
Code Injection
|
CVE-2008-0804
|
2017-09-29 10:30 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257547
|
- |
|
reality
|
medias_phpizabi
|
Unrestricted file upload vulnerability in image.php in PHPizabi 0.848b C1 HFP1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension from the event page, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0805
|
2017-09-29 10:30 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257548
|
- |
|
lookstrike
|
lan_manager
|
Multiple PHP remote file inclusion vulnerabilities in LookStrike Lan Manager 0.9 allow remote attackers to execute arbitrary PHP code via a URL in the sys_conf[path][real] parameter to (1) modules\cl…
|
CWE-94
Code Injection
|
CVE-2008-0803
|
2017-09-29 10:30 |
2008-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257549
|
- |
|
auracms
|
auracms
|
Multiple SQL injection vulnerabilities in AuraCMS 1.62 allow remote attackers to execute arbitrary SQL commands via (1) the kid parameter to (a) mod/dl.php or (b) mod/links.php, and (2) the query par…
|
CWE-89
SQL Injection
|
CVE-2008-0811
|
2017-09-29 10:30 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257550
|
- |
|
xpweb
|
xpweb
|
Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the url parameter.
|
CWE-22
Path Traversal
|
CVE-2008-0813
|
2017-09-29 10:30 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
