|
260511
|
- |
|
vignette
|
vignette_content_management
|
Unspecified vulnerability in Vignette Content Management 7.3.0.5, 7.3.1, 7.3.1.1, 7.4, and 7.5 allows "low privileged" users to gain administrator privileges via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2008-6412
|
2017-08-17 10:29 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260512
|
- |
|
ticklespace
|
answers_module
|
Cross-site scripting (XSS) vulnerability in the Answers module 5.x-1.x-dev and possibly other 5.x versions, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a S…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6413
|
2017-08-17 10:29 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260513
|
- |
|
youngzsoft
|
ccproxy
|
Buffer overflow in YoungZSoft CCProxy 6.5 might allow remote attackers to execute arbitrary code via a CONNECTION request with a long hostname.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-6415
|
2017-08-17 10:29 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260514
|
- |
|
greensql
|
greensql-console
|
Multiple cross-site scripting (XSS) vulnerabilities in GreenSQL-Console before 0.3.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "internal pages."
|
CWE-79
Cross-site Scripting
|
CVE-2008-6416
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260515
|
- |
|
greensql
|
greensql-console
|
Unspecified vulnerability in GreenSQL-Console before 0.3.5 allows attackers to obtain the "installation directory" via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2008-6417
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260516
|
- |
|
jun_sota
|
ffftp
|
Directory traversal vulnerability in FFFTP 1.96b allows remote FTP servers to create or overwrite arbitrary files via a response to an FTP LIST command with a filename that contains a .. (dot dot).
|
CWE-22
Path Traversal
|
CVE-2008-6424
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260517
|
- |
|
kayalang
|
kaya
|
The CGI framework in Kaya 0.4.0 allows remote attackers to inject arbitrary HTTP headers and conduct cross-site scripting (XSS) attacks via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6428
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260518
|
- |
|
blueriver
|
sava_cms
|
Cross-site scripting (XSS) vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6433
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260519
|
- |
|
blueriver
|
sava_cms
|
SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6434
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260520
|
- |
|
xerox
|
workcentre
|
Cross-site scripting (XSS) vulnerability in the Web Server in Xerox WorkCentre 7132, 7228, 7235, and 7245 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6436
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
