|
293031
|
- |
|
cmsbright
|
cmsbright
|
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote attackers to execute arbitrary SQL commands via the id_rub_page parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6991
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293032
|
- |
|
google
|
chrome
|
Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome 0.2.149.27 allows remote attackers to cause a denial of service (browser crash) via a URI with an invalid handler followed by a …
|
CWE-189
Numeric Errors
|
CVE-2008-6995
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293033
|
- |
|
google
|
chrome
|
Google Chrome 0.2.149.27 allows user-assisted remote attackers to cause a denial of service (browser crash) via an IMG tag with a long src attribute, which triggers the crash when the victim performs…
|
NVD-CWE-Other
|
CVE-2008-6997
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293034
|
- |
|
google
|
chrome
|
Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Google Chrome 0.2.149.27 and other versions before 0.2.149.29 might allow user-assisted remote attackers to execute arbitrary code vi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-6998
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293035
|
- |
|
creative_mind
|
creator_cms
|
Unrestricted file upload vulnerability in the file manager in Creative Mind Creator CMS 5.0 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-Other
|
CVE-2008-7001
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293036
|
- |
|
the-rat-cms
|
the-rat-cms
|
Multiple SQL injection vulnerabilities in login.php in The Rat CMS Alpha 2 allow remote attackers to execute arbitrary SQL commands via the (1) user_id and (2) password parameter.
|
CWE-89
SQL Injection
|
CVE-2008-7003
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293037
|
- |
|
phpversion
|
php_vx_guestbook
|
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php.
|
CWE-287
Improper Authentication
|
CVE-2008-7006
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293038
|
- |
|
phpversion
|
php_vx_guestbook
|
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the (1) admin_name and (2) admin_pass cookie values to 1.
|
CWE-287
Improper Authentication
|
CVE-2008-7007
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293039
|
- |
|
skalinks
|
exchange_script
|
Skalfa Software SkaLinks Exchange Script 1.5 allows remote attackers to add new administrators and gain privileges via a direct request to admin/register.php.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7010
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293040
|
- |
|
fhttpd
|
fhttpd
|
fhttpd 0.4.2 allows remote attackers to cause a denial of service (crash) via an Authorization HTTP header with an invalid character after the Basic value.
|
NVD-CWE-Other
|
CVE-2008-7014
|
2017-09-29 10:33 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
