|
293041
|
- |
|
esqlanelapse
|
esqlanelapse
|
Esqlanelapse 2.6.1 and 2.6.2 allows remote attackers to bypass authentication and gain privileges via modified (1) enombre and (2) euri cookies.
|
CWE-287
Improper Authentication
|
CVE-2008-7019
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293042
|
- |
|
availscript
|
jobs_portal_script
|
Unrestricted file upload vulnerability in editlogo.php in AvailScript Jobs Portal Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension a…
|
NVD-CWE-Other
|
CVE-2008-7021
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293043
|
- |
|
chilkatsoft
|
chilkat_imap_activex_control
|
Insecure method vulnerability in ChilkatMail_v7_9.dll in the Chilkat Software IMAP ActiveX control (ChilkatMail2.ChilkatMailMan2.1) allows remote attackers to execute arbitrary programs via the LoadX…
|
NVD-CWE-Other
|
CVE-2008-7022
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293044
|
- |
|
libra_file_manager
|
php_filemanager
|
Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1.
|
CWE-287
Improper Authentication
|
CVE-2008-7027
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293045
|
- |
|
aves
|
rpg_board
|
RPG.Board 0.8 Beta2 and earlier allows remote attackers to bypass authentication and gain privileges by setting the keep4u cookie to a certain value.
|
CWE-287
Improper Authentication
|
CVE-2008-7028
|
2017-09-29 10:33 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293046
|
- |
|
ajsquare
|
aj_classifieds
|
AJ Classifieds allows remote attackers to bypass authentication and gain administrator privileges via a direct request to admin/home.php.
|
CWE-287
Improper Authentication
|
CVE-2008-7041
|
2017-09-29 10:33 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293047
|
- |
|
freshscripts
|
fresh_email_script
|
PHP remote file inclusion vulnerability in url.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the tmp_sid parameter.
|
CWE-94
Code Injection
|
CVE-2008-7042
|
2017-09-29 10:33 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293048
|
- |
|
freshscripts
|
fresh_email_script
|
Cross-site scripting (XSS) vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. N…
|
CWE-79
Cross-site Scripting
|
CVE-2008-7043
|
2017-09-29 10:33 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293049
|
- |
|
ajsquare
|
free_polling_script
|
SQL injection vulnerability in admin/include/newpoll.php in AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to execute arbitrary SQL commands via the ques parameter.
|
CWE-89
SQL Injection
|
CVE-2008-7044
|
2017-09-29 10:33 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293050
|
- |
|
ajsquare
|
free_polling_script
|
AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to admin/resetvote.php.
|
CWE-287
Improper Authentication
|
CVE-2008-7045
|
2017-09-29 10:33 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
