|
256521
|
- |
|
phpversion
|
php_vx_guestbook
|
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php.
|
CWE-287
Improper Authentication
|
CVE-2008-7006
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256522
|
- |
|
phpversion
|
php_vx_guestbook
|
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the (1) admin_name and (2) admin_pass cookie values to 1.
|
CWE-287
Improper Authentication
|
CVE-2008-7007
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256523
|
- |
|
skalinks
|
exchange_script
|
Skalfa Software SkaLinks Exchange Script 1.5 allows remote attackers to add new administrators and gain privileges via a direct request to admin/register.php.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7010
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256524
|
- |
|
fhttpd
|
fhttpd
|
fhttpd 0.4.2 allows remote attackers to cause a denial of service (crash) via an Authorization HTTP header with an invalid character after the Basic value.
|
NVD-CWE-Other
|
CVE-2008-7014
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256525
|
- |
|
esqlanelapse
|
esqlanelapse
|
Esqlanelapse 2.6.1 and 2.6.2 allows remote attackers to bypass authentication and gain privileges via modified (1) enombre and (2) euri cookies.
|
CWE-287
Improper Authentication
|
CVE-2008-7019
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256526
|
- |
|
availscript
|
jobs_portal_script
|
Unrestricted file upload vulnerability in editlogo.php in AvailScript Jobs Portal Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension a…
|
NVD-CWE-Other
|
CVE-2008-7021
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256527
|
- |
|
chilkatsoft
|
chilkat_imap_activex_control
|
Insecure method vulnerability in ChilkatMail_v7_9.dll in the Chilkat Software IMAP ActiveX control (ChilkatMail2.ChilkatMailMan2.1) allows remote attackers to execute arbitrary programs via the LoadX…
|
NVD-CWE-Other
|
CVE-2008-7022
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256528
|
- |
|
libra_file_manager
|
php_filemanager
|
Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1.
|
CWE-287
Improper Authentication
|
CVE-2008-7027
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256529
|
- |
|
aves
|
rpg_board
|
RPG.Board 0.8 Beta2 and earlier allows remote attackers to bypass authentication and gain privileges by setting the keep4u cookie to a certain value.
|
CWE-287
Improper Authentication
|
CVE-2008-7028
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256530
|
- |
|
ajsquare
|
aj_classifieds
|
AJ Classifieds allows remote attackers to bypass authentication and gain administrator privileges via a direct request to admin/home.php.
|
CWE-287
Improper Authentication
|
CVE-2008-7041
|
2017-09-29 10:33 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
