|
261311
|
- |
|
isc
|
bind
|
Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors.
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2008-4163
|
2017-08-8 10:32 |
2008-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261312
|
- |
|
kolab
|
kolab_groupware_server
|
admin/user/create_user.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local administrators, and possibly remote attackers, to obtain cleartext passwor…
|
CWE-310
Cryptographic Issues
|
CVE-2008-4165
|
2017-08-8 10:32 |
2008-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261313
|
- |
|
rfaah
|
cars-vehicles_script
|
SQL injection vulnerability in page.php in Cars & Vehicle (aka Cars-Vehicle Script) allows remote attackers to execute arbitrary SQL commands via the lnkid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-4172
|
2017-08-8 10:32 |
2008-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261314
|
- |
|
benjamin_kuz
|
dynamic_mp3_lister
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Dynamic MP3 Lister 2.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) currentpath, (2) invert, (3) sea…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4174
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261315
|
- |
|
horde
|
turba_contact_manager_h3
|
Cross-site scripting (XSS) vulnerability in imp/test.php in Horde Turba Contact Manager H3 2.2.1 and other versions before 2.3.1, and possibly other Horde Project products, allows remote attackers to…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4182
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261316
|
- |
|
webcms
|
webcms_portal_edition
|
Cross-site scripting (XSS) vulnerability in index.php in webCMS Portal Edition allows remote attackers to inject arbitrary web script or HTML via the patron parameter. NOTE: the provenance of this i…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4184
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261317
|
- |
|
webcms
|
webcms_portal_edition
|
SQL injection vulnerability in index.php in webCMS Portal Edition allows remote attackers to execute arbitrary SQL commands via the id_doc parameter. NOTE: the provenance of this information is unkn…
|
CWE-89
SQL Injection
|
CVE-2008-4186
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261318
|
- |
|
typo3
|
secure_directory
|
Unspecified vulnerability in the TYPO3 Secure Directory (kw_secdir) extension before 1.0.2 allows remote attackers to execute arbitrary code via unknown vectors related to "injection of control chara…
|
NVD-CWE-noinfo
CWE-94
Code Injection
|
CVE-2008-4188
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261319
|
- |
|
emacspeak_inc
|
emacspeak
|
extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.
|
CWE-59
Link Following
|
CVE-2008-4191
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261320
|
- |
|
redhat
|
cman
|
The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.
|
CWE-59
Link Following
|
CVE-2008-4192
|
2017-08-8 10:32 |
2008-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
