|
263831
|
- |
|
cybergl_dev_team
|
phpsearch
|
PHP remote file inclusion vulnerability in utils/class_HTTPRetriever.php in phpSearch allows remote attackers to execute arbitrary PHP code via a URL in the libcurlemuinc parameter.
|
CWE-94
Code Injection
|
CVE-2008-0448
|
2017-08-8 10:29 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263832
|
- |
|
rocksalt_international
|
vp_asp
|
SQL injection vulnerability in paypalresult.asp in VP-ASP Shopping Cart 6.50 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: the provenance of th…
|
CWE-89
SQL Injection
|
CVE-2008-0449
|
2017-08-8 10:29 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263833
|
- |
|
drupal
|
archive_module
drupal
|
Cross-site scripting (XSS) vulnerability in the Archive 5.x before 5.x-1.8 module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0462
|
2017-08-8 10:29 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263834
|
- |
|
drupal
|
workflow
|
Cross-site scripting (XSS) vulnerability in the Workflow 4.7.x before 4.7.x-1.2 and 5.x before 5.x-1.2 module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0463
|
2017-08-8 10:29 |
2008-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263835
|
- |
|
firebirdsql
|
firebird
|
Stack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arbitrary code via a long username.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0467
|
2017-08-8 10:29 |
2008-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263836
|
- |
|
manageengine
|
applications_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Applications Manager 8.1 build 8100 allow remote attackers to inject arbitrary web script or HTML via the (1) showlink parameter to…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0474
|
2017-08-8 10:29 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263837
|
- |
|
manageengine
|
applications_manager
|
ManageEngine Applications Manager 8.1 build 8100 allows remote attackers to obtain sensitive information ( Home->Summary) via an invalid URI, as demonstrated by the "/-" URI. NOTE: the provenance of…
|
CWE-20
Improper Input Validation
|
CVE-2008-0475
|
2017-08-8 10:29 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263838
|
- |
|
manageengine
|
applications_manager
|
ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do and unspecified other pages, which allows remote attackers to obtain sensitive information and change…
|
CWE-287
Improper Authentication
|
CVE-2008-0476
|
2017-08-8 10:29 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263839
|
- |
|
ibm
|
hardware_management_console
|
Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console (HMC) 7 R3.2.0 allows remote attackers to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2008-0495
|
2017-08-8 10:29 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263840
|
- |
|
mamboxchange
|
laithai
|
SQL injection vulnerability in Mambo LaiThai 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-0499
|
2017-08-8 10:29 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
