261141
|
- |
|
damian_hickey
|
freeway
|
Cross-site scripting (XSS) vulnerability in admin/search_links.php in Freeway before 1.4.2.197 allows remote attackers to inject arbitrary web script or HTML via the URL.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3678
|
2017-08-8 10:32 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261142
|
- |
|
idevspot
|
phplinkexchange
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in IDevSpot PhpLinkExchange 1.01 allow remote attackers to inject arbitrary web script or HTML via the catid parameter in a (1) user_a…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3679
|
2017-08-8 10:32 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261143
|
- |
|
ypninc
|
php_realty
|
SQL injection vulnerability in dpage.php in YPN PHP Realty allows remote attackers to execute arbitrary SQL commands via the docID parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3682
|
2017-08-8 10:32 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261144
|
- |
|
sun
|
java_system_web_proxy_server
|
Unspecified vulnerability in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.5 before SP6 allows remote attackers to cause a denial of service (failure to accept connections) vi…
|
NVD-CWE-noinfo
|
CVE-2008-3683
|
2017-08-8 10:32 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261145
|
- |
|
xen
|
xen xen_flask_module
|
Heap-based buffer overflow in the flask_security_label function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users (domU) to execute arbitrary code via the flask_op…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3687
|
2017-08-8 10:32 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261146
|
- |
|
amarok
|
amarok
|
The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in Amarok before 1.4.10 allows local users to overwrite arbitrary files via a symlink attack on the album_…
|
CWE-59
Link Following
|
CVE-2008-3699
|
2017-08-8 10:32 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261147
|
- |
|
kayako
|
supportsuite
|
Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite 3.20.02 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the sessionid parameter in a lives…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3700
|
2017-08-8 10:32 |
2008-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261148
|
- |
|
kayako
|
supportsuite
|
SQL injection vulnerability in staff/index.php in Kayako SupportSuite 3.20.02 and earlier allows remote authenticated users to execute arbitrary SQL commands via the customfieldlinkid parameter in a …
|
CWE-89
SQL Injection
|
CVE-2008-3701
|
2017-08-8 10:32 |
2008-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261149
|
- |
|
echovnc
|
echovnc
|
Stack-based buffer overflow in the CLogger::WriteFormated function in echoware/Logger.cpp in EchoVNC Linux before 1.1.2 allows remote echoServers to execute arbitrary code via a large (1) group or (2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3705
|
2017-08-8 10:32 |
2008-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261150
|
- |
|
hotscripts
|
cyboards_php_lite
|
Multiple PHP remote file inclusion vulnerabilities in CyBoards PHP Lite 1.21 allow remote attackers to execute arbitrary PHP code via a URL in the script_path parameter to (1) flat_read.php, (2) post…
|
CWE-94
Code Injection
|
CVE-2008-3707
|
2017-08-8 10:32 |
2008-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|