|
257341
|
- |
|
gamecms
|
gamecms_lite
|
SQL injection vulnerability in index.php in gameCMS Lite 1.0 allows remote attackers to execute arbitrary SQL commands via the systemId parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2225
|
2017-09-29 10:31 |
2008-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257342
|
- |
|
cyberfolio
|
cyberfolio
|
PHP remote file inclusion vulnerability in portfolio/commentaires/derniers_commentaires.php in Cyberfolio 7.12, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code…
|
CWE-94
Code Injection
|
CVE-2008-2228
|
2017-09-29 10:31 |
2008-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257343
|
- |
|
openoffice
|
openoffice.org
|
Heap-based buffer overflow in OpenOffice.org (OOo) 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF file associated with a StarOffice/StarSuite document.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2237
|
2017-09-29 10:31 |
2008-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257344
|
- |
|
openoffice
|
openoffice.org
|
Multiple integer overflows in OpenOffice.org (OOo) 2.x before 2.4.2 allow remote attackers to execute arbitrary code via crafted EMR records in an EMF file associated with a StarOffice/StarSuite docu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2238
|
2017-09-29 10:31 |
2008-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257345
|
- |
|
microsoft
|
office_word
|
Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a .doc file that contains malformed data, as exploited in the wild in July 2008, and as demonstrated by attachemen…
|
CWE-399
Resource Management Errors
|
CVE-2008-2244
|
2017-09-29 10:31 |
2008-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257346
|
- |
|
cmsnx
|
automated_link_exchange_portal
|
SQL injection vulnerability in linking.page.php in Automated Link Exchange Portal allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. NOTE: linking.page.php is common…
|
CWE-89
SQL Injection
|
CVE-2008-2263
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257347
|
- |
|
emophp
|
emo_realty_manager
|
SQL injection vulnerability in news.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the ida parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2265
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257348
|
- |
|
cms_made_simple
|
cms_made_simple
|
Incomplete blacklist vulnerability in javaUpload.php in Postlet in the FileManager module in CMS Made Simple 1.2.4 and earlier allows remote attackers to execute arbitrary code by uploading a file wi…
|
CWE-20
Improper Input Validation
|
CVE-2008-2267
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257349
|
- |
|
phpway
|
kostenloses_linkmanagementscript
|
Multiple PHP remote file inclusion vulnerabilities in PHPWAY Kostenloses Linkmanagementscript allow remote attackers to execute arbitrary PHP code via a URL in the (1) main_page_directory and (2) pag…
|
CWE-94
Code Injection
|
CVE-2008-2270
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257350
|
- |
|
matisbt
|
mantis
|
Cross-site request forgery (CSRF) vulnerability in manage_user_create.php in Mantis 1.1.1 allows remote attackers to create new administrative users via a crafted link.
|
CWE-352
Origin Validation Error
|
CVE-2008-2276
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
