|
261061
|
- |
|
php-fusion
|
php-fusion
|
SQL injection vulnerability in readmore.php in PHP-Fusion 4.01 allows remote attackers to execute arbitrary SQL commands via the news_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5946
|
2017-08-8 10:33 |
2009-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261062
|
- |
|
yapbb
|
yapbb
|
PHP remote file inclusion vulnerability in include/class_yapbbcooker.php in YapBB 1.2.Beta 2 allows remote attackers to execute arbitrary PHP code via a URL in the cfgIncludeDirectory parameter.
|
CWE-94
Code Injection
|
CVE-2008-5947
|
2017-08-8 10:33 |
2009-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261063
|
- |
|
ktp_computer_customer_database
|
ktp_computer_customer_database
|
SQL injection vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the lname parameter in a l…
|
CWE-89
SQL Injection
|
CVE-2008-5954
|
2017-08-8 10:33 |
2009-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261064
|
- |
|
i-netsolution
|
orkut_clone
|
SQL injection vulnerability in profile_social.php in i-Net Solution Orkut Clone allows remote authenticated users to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5970
|
2017-08-8 10:33 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261065
|
- |
|
i-netsolution
|
orkut_clone
|
Cross-site scripting (XSS) vulnerability in profile_social.php in i-Net Solution Orkut Clone allows remote authenticated users to inject arbitrary web script or HTML via the id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-5971
|
2017-08-8 10:33 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261066
|
- |
|
activewebsoftwares
|
active_price_comparison
|
SQL injection vulnerability in links.asp in Active Price Comparison 4.0 allows remote attackers to execute arbitrary SQL commands via the linkid parameter. NOTE: the provenance of this information i…
|
CWE-89
SQL Injection
|
CVE-2008-5975
|
2017-08-8 10:33 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261067
|
- |
|
preprojects
|
php_jobwebsite_pro
|
Multiple cross-site scripting (XSS) vulnerabilities in siteadmin/forgot.php in PHP JOBWEBSITE PRO allow remote attackers to inject arbitrary web script or HTML via (1) the adname parameter in a Submi…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5976
|
2017-08-8 10:33 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261068
|
- |
|
preprojects
|
php_jobwebsite_pro
|
SQL injection vulnerability in siteadmin/forgot.php in PHP JOBWEBSITE PRO allows remote attackers to execute arbitrary SQL commands via the adname parameter in a Submit action.
|
CWE-89
SQL Injection
|
CVE-2008-5977
|
2017-08-8 10:33 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261069
|
- |
|
dia
|
dia
|
Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working…
|
NVD-CWE-Other
|
CVE-2008-5984
|
2017-08-8 10:33 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261070
|
- |
|
csound
|
csound
|
Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST plugin for writing score generators in Python" in Csound 5.08.2, and possibly other versions, allows loc…
|
NVD-CWE-Other
|
CVE-2008-5986
|
2017-08-8 10:33 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
