|
256961
|
- |
|
netart_media
|
real_estate_portal
|
SQL injection vulnerability in NetArt Media Real Estate Portal 1.2 allows remote attackers to execute arbitrary SQL commands via the ad_id parameter in the re_send_email module to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-5309
|
2017-09-29 10:32 |
2008-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256962
|
- |
|
netart_media
|
car_portal
|
SQL injection vulnerability in image.php in NetArt Media Car Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5310
|
2017-09-29 10:32 |
2008-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256963
|
- |
|
netart_media
|
blog_system
|
SQL injection vulnerability in image.php in NetArt Media Blog System 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5311
|
2017-09-29 10:32 |
2008-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256964
|
- |
|
clam_anti-virus
|
clamav
|
Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jp…
|
CWE-399
Resource Management Errors
|
CVE-2008-5314
|
2017-09-29 10:32 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256965
|
- |
|
littlecms
|
lcms
little_cms_color_engine
|
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) before 1.16 allows attackers to have an unknown impact via vectors related to a length parame…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5316
|
2017-09-29 10:32 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256966
|
- |
|
e107
|
e107
|
SQL injection vulnerability in usersettings.php in e107 0.7.13 and earlier allows remote authenticated users to execute arbitrary SQL commands via the ue[] parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5320
|
2017-09-29 10:32 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256967
|
- |
|
xoops_hocasi
|
gesgaleri
|
SQL injection vulnerability in index.php in GesGaleri, a module for XOOPS, allows remote attackers to execute arbitrary SQL commands via the no parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5321
|
2017-09-29 10:32 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256968
|
- |
|
easy-script
|
wysi_wiki_wyg
|
Wysi Wiki Wyg 1.0 allows remote attackers to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
|
CWE-200
Information Exposure
|
CVE-2008-5322
|
2017-09-29 10:32 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256969
|
- |
|
easy-script
|
wysi_wiki_wyg
|
Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote attackers to inject arbitrary web script or HTML via the s parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-5323
|
2017-09-29 10:32 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256970
|
- |
|
pie
|
pie
|
Multiple PHP remote file inclusion vulnerabilities in Pie 0.5.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lib parameter to files in lib/action/ including (a) alias.php…
|
CWE-94
Code Injection
|
CVE-2008-5332
|
2017-09-29 10:32 |
2008-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
