|
264131
|
- |
|
manageengine
|
applications_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Applications Manager 8.1 build 8100 allow remote attackers to inject arbitrary web script or HTML via the (1) showlink parameter to…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0474
|
2017-08-8 10:29 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264132
|
- |
|
manageengine
|
applications_manager
|
ManageEngine Applications Manager 8.1 build 8100 allows remote attackers to obtain sensitive information ( Home->Summary) via an invalid URI, as demonstrated by the "/-" URI. NOTE: the provenance of…
|
CWE-20
Improper Input Validation
|
CVE-2008-0475
|
2017-08-8 10:29 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264133
|
- |
|
manageengine
|
applications_manager
|
ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do and unspecified other pages, which allows remote attackers to obtain sensitive information and change…
|
CWE-287
Improper Authentication
|
CVE-2008-0476
|
2017-08-8 10:29 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264134
|
- |
|
ibm
|
hardware_management_console
|
Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console (HMC) 7 R3.2.0 allows remote attackers to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2008-0495
|
2017-08-8 10:29 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264135
|
- |
|
mamboxchange
|
laithai
|
SQL injection vulnerability in Mambo LaiThai 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-0499
|
2017-08-8 10:29 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264136
|
- |
|
mamboxchange
|
laithai
|
Multiple unspecified vulnerabilities in Mambo LaiThai 4.5.5 have unknown impact and attack vectors related to (1) mod_login and (2) mod_template_chooser.
|
NVD-CWE-noinfo
|
CVE-2008-0500
|
2017-08-8 10:29 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264137
|
- |
|
sqlite_manager
|
sqlite_manager
|
PHP remote file inclusion vulnerability in spaw/dialogs/confirm.php in SQLiteManager 1.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: the prove…
|
CWE-94
Code Injection
|
CVE-2008-0516
|
2017-08-8 10:29 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264138
|
- |
|
softcart
|
softcart
|
Multiple cross-site scripting (XSS) vulnerabilities in SoftCart.exe in SoftCart 5.1.2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) License_Plate, (2) License_State, (3)…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0523
|
2017-08-8 10:29 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264139
|
- |
|
yamaha
|
rt107e
rt52pro
rt56v
rt57i
rt58i
rt60w
rt80i
rta50i
rta52i
rta54i
rta55i
rtv700
rtw65b
rtw65i
rtx1000
rtx1100
rtx1500
srt100
|
Cross-site request forgery (CSRF) vulnerability in the management interface in multiple Yamaha RT series routers allows remote attackers to change password settings and probably other configuration s…
|
CWE-352
Origin Validation Error
|
CVE-2008-0524
|
2017-08-8 10:29 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264140
|
- |
|
cisco
|
skinny_client_control_protocol_\(sccp\)_firmware
session_initiation_protocol_\(sip\)_firmware
|
Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a long ICMP echo request (ping) packet.
|
CWE-20
Improper Input Validation
|
CVE-2008-0526
|
2017-08-8 10:29 |
2008-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
