|
256901
|
- |
|
castillocentral
|
ccleague
|
SQL injection vulnerability in admin.php in CCleague Pro 1.2 allows remote attackers to execute arbitrary SQL commands via the u parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5123
|
2017-09-29 10:32 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256902
|
- |
|
castillocentral
|
ccleague
|
admin.php in CCleague Pro 1.2 allows remote attackers to bypass authentication by setting the type cookie value to admin.
|
CWE-287
Improper Authentication
|
CVE-2008-5125
|
2017-09-29 10:32 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256903
|
- |
|
ocean12_technologies
|
contact_manager
|
Ocean12 Contact Manager Pro 1.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5127
|
2017-09-29 10:32 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256904
|
- |
|
develop_it_easy
|
news_and_article_system
|
Multiple SQL injection vulnerabilities in Develop It Easy News And Article System 1.4 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter to article_details.php, and th…
|
CWE-89
SQL Injection
|
CVE-2008-5131
|
2017-09-29 10:32 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256905
|
- |
|
memht
|
memht_portal
|
SQL injection vulnerability in inc/ajax/ajax_rating.php in MemHT Portal 4.0.1 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.
|
CWE-89
SQL Injection
|
CVE-2008-5132
|
2017-09-29 10:32 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256906
|
- |
|
myserver
|
myserver
|
Unspecified vulnerability in MyServer 0.8.11 allows remote attackers to cause a denial of service (daemon crash) via multiple invalid requests with the HTTP GET, DELETE, OPTIONS, and possibly other m…
|
NVD-CWE-noinfo
|
CVE-2008-5160
|
2017-09-29 10:32 |
2008-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256907
|
- |
|
easysitenetwork
|
riddles_website
|
SQL injection vulnerability in riddle.php in Riddles Website 1.2.1 allows remote attackers to execute arbitrary SQL commands via the riddleid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5166
|
2017-09-29 10:32 |
2008-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256908
|
- |
|
boonex
|
orca
|
PHP remote file inclusion vulnerability in layout/default/params.php in Boonex Orca 2.0 and 2.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in…
|
CWE-94
Code Injection
|
CVE-2008-5167
|
2017-09-29 10:32 |
2008-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256909
|
- |
|
easysitenetwork
|
tips_complete_website
|
SQL injection vulnerability in tip.php in Tips Complete Website 1.2.0 allows remote attackers to execute arbitrary SQL commands via the tipid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5168
|
2017-09-29 10:32 |
2008-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256910
|
- |
|
easysitenetwork
|
drinks_complete_website
|
SQL injection vulnerability in drinks/drink.php in Drinks Complete Website 2.1.0 allows remote attackers to execute arbitrary SQL commands via the drinkid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5169
|
2017-09-29 10:32 |
2008-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
