|
261831
|
- |
|
powergap
|
shopsystem
|
SQL injection vulnerability in s03.php in Powergap Shopsystem, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the ag parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3561
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261832
|
- |
|
chupix
|
chupix_cms
cms_contact_module
|
Directory traversal vulnerability in index.php in the Contact module in Chupix CMS 0.1.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a…
|
CWE-22
Path Traversal
|
CVE-2008-3562
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261833
|
- |
|
mrbs
|
mrbs
|
Multiple cross-site scripting (XSS) vulnerabilities in Meeting Room Booking System (MRBS) 1.2.6 allow remote attackers to inject arbitrary web script or HTML via the area parameter to (1) day.php, (2…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3565
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261834
|
- |
|
zoneo-soft
|
freeforum
|
Cross-site scripting (XSS) vulnerability in ZoneO-soft freeForum 1.7 allows remote attackers to inject arbitrary web script or HTML via the acuparam parameter to (1) the default URI or (2) index.php,…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3566
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261835
|
- |
|
pligg
|
pligg_cms
|
Cross-site scripting (XSS) vulnerability in index.php in Pligg 9.9.5 allows remote attackers to inject arbitrary web script or HTML via the category parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3572
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261836
|
- |
|
php-nuke
pligg
|
php-nuke
pligg
|
The CAPTCHA implementation in (1) Pligg 9.9.5 and possibly (2) Francisco Burzi PHP-Nuke 8.1 provides a critical random number (the ts_random value) within the URL in the SRC attribute of an IMG eleme…
|
CWE-189
CWE-264
Numeric Errors
Permissions, Privileges, and Access Controls
|
CVE-2008-3573
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261837
|
- |
|
openttd
|
openttd
|
Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a craf…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3576
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261838
|
- |
|
openttd
|
openttd
|
Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unli…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3577
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261839
|
- |
|
imagevue
|
imagevue
|
Multiple cross-site scripting (XSS) vulnerabilities in imageVue 1.7 allow remote attackers to inject arbitrary web script or HTML via the path parameter to (1) popup.php, (2) test/dir2.php, (3) admin…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1273
|
2017-08-8 10:30 |
2008-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261840
|
- |
|
b21soft
|
bfup
|
Buffer overflow in the BFup ActiveX control (BFup.dll) in B21Soft BFup before 1.0.802.29 allows remote attackers to execute arbitrary code via a long FilePath parameter.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1282
|
2017-08-8 10:30 |
2008-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
