|
257841
|
- |
|
joomla
|
com_content
|
SQL injection vulnerability in the content component (com_content) 1.0.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a blogcategory action to ind…
|
CWE-89
SQL Injection
|
CVE-2008-6923
|
2017-09-29 10:33 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257842
|
- |
|
phpstore
|
complete_classifieds
|
Unrestricted file upload vulnerability in PHPStore Complete Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then ac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6928
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257843
|
- |
|
phpstore
|
auto_classifieds
|
Unrestricted file upload vulnerability in PHPStore Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then access…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6929
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257844
|
- |
|
phpstore
|
real_estate
|
Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6930
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257845
|
- |
|
phpstore
|
phpcareers
|
Unrestricted file upload vulnerability in PHPStore Job Search (aka PHPCareers) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a resume…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6931
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257846
|
- |
|
alstrasoft
|
sendit
|
Unrestricted file upload vulnerability in submit_file.php in AlstraSoft SendIt Pro allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6932
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257847
|
- |
|
minigal
|
minigal
|
Directory traversal vulnerability in index.php in MiniGal b13 (aka MG2) allows remote attackers to read the source code of .php files, and possibly the content of other files, via a .. (dot dot) in t…
|
CWE-22
Path Traversal
|
CVE-2008-6933
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257848
|
- |
|
sansuart
|
free_simple_guestbook_php_script
|
Static code injection vulnerability in Sanus|artificium (aka Sanusart) Free simple guestbook PHP script, when downloaded before 20081111, allows remote attackers to inject arbitrary PHP code into mes…
|
CWE-94
Code Injection
|
CVE-2008-6934
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257849
|
- |
|
jabber
|
exodus
|
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in a pr…
|
CWE-94
Code Injection
|
CVE-2008-6936
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257850
|
- |
|
holger_zimmermann
|
pi3web
|
Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service (crash or hang) and obt…
|
CWE-20
Improper Input Validation
|
CVE-2008-6938
|
2017-09-29 10:33 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
