|
262741
|
- |
|
camera_life
|
camera_life
|
Multiple cross-site scripting (XSS) vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.php and (2) rss.php; the que…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6295
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262742
|
- |
|
dhcart
|
dhcart
|
Cross-site scripting (XSS) vulnerability in order.php in DHCart allows remote attackers to inject arbitrary web script or HTML via the (1) domain and (2) d1 parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6297
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262743
|
- |
|
rocketeer.dip
|
sisapilocation
|
Unspecified vulnerability in sISAPILocation before 1.0.2.2 allows remote attackers to bypass intended access restrictions for character encoding and the cookie secure flag via unknown vectors related…
|
CWE-20
Improper Input Validation
|
CVE-2008-6298
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262744
|
- |
|
joomla
|
joomla
|
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and earlier allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and …
|
CWE-79
Cross-site Scripting
|
CVE-2008-6299
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262745
|
- |
|
gwm
|
galatolo_webmanager
|
Galatolo WebManager 1.3a allows remote attackers to bypass authentication and gain administrative access by setting the (1) gwm_user and (2) gwm_pass cookies to admin. NOTE: the provenance of this i…
|
CWE-287
Improper Authentication
|
CVE-2008-6300
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262746
|
- |
|
softbizscripts
|
classifieds_script
|
Cross-site scripting (XSS) vulnerability in signinform.php in Softbiz Classifieds Script allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: the provenance of…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6306
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262747
|
- |
|
softbizscripts
|
classifieds_script
|
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Classifieds Script allow remote attackers to inject arbitrary web script or HTML via the (1) radio parameter to showcategory.php, (2) ms…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6325
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262748
|
- |
|
simplecustomer
|
simple_customer
|
SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this …
|
CWE-89
SQL Injection
|
CVE-2008-6326
|
2017-08-17 10:29 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262749
|
- |
|
streber-pm
|
streber
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Streber before 0.08093 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2008-6331
|
2017-08-17 10:29 |
2009-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262750
|
- |
|
impresscms
|
impresscms
|
Cross-site scripting (XSS) vulnerability in the userranks feature in modules/system/admin.php in ImpressCMS 1.0.2 final allows remote attackers to inject arbitrary web script or HTML via the rank_tit…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6360
|
2017-08-17 10:29 |
2009-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
