|
257741
|
- |
|
iscripts
|
socialware
|
Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality. NOT…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1790
|
2017-09-29 10:30 |
2008-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257742
|
- |
|
mygamingladder
|
mygamingladder
|
SQL injection vulnerability in ladder.php in My Gaming Ladder 7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the ladderid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1791
|
2017-09-29 10:30 |
2008-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257743
|
- |
|
dragoon
|
dragoon
|
Directory traversal vulnerability in forum/kietu/libs/calendrier.php in Dragoon 0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cal[lng] parameter.
|
CWE-22
Path Traversal
|
CVE-2008-1798
|
2017-09-29 10:30 |
2008-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257744
|
- |
|
sabros.us
|
sabros.us
|
Directory traversal vulnerability in thumbnails.php in sabros.us 1.75 allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter.
|
CWE-22
Path Traversal
|
CVE-2008-1799
|
2017-09-29 10:30 |
2008-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257745
|
- |
|
rdesktop
|
rdesktop
|
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol…
|
CWE-189
Numeric Errors
|
CVE-2008-1801
|
2017-09-29 10:30 |
2008-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257746
|
- |
|
rdesktop
|
rdesktop
|
Buffer overflow in the process_redirect_pdu (rdp.c) function in rdesktop 1.5.0 allows remote attackers to execute arbitrary code via a Remote Desktop Protocol (RDP) redirect request with modified len…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1802
|
2017-09-29 10:30 |
2008-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257747
|
- |
|
rdesktop
|
rdesktop
|
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: th…
|
CWE-189
Numeric Errors
|
CVE-2008-1803
|
2017-09-29 10:30 |
2008-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257748
|
- |
|
bosdev
|
bosclassifieds_ads_systems
|
SQL injection vulnerability in BosClassifieds Classified Ads System 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-1838
|
2017-09-29 10:30 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257749
|
- |
|
coronamatrix
|
phpaddressbook
|
SQL injection vulnerability in view.php in CoronaMatrix phpAddressBook 2.11 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1847
|
2017-09-29 10:30 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257750
|
- |
|
joomlacode
|
joomlaexplorer
|
Cross-site scripting (XSS) vulnerability in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! component 1.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the erro…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1848
|
2017-09-29 10:30 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
