|
293301
|
- |
|
alstrasoft
|
forum_pay_per_post_exchange
|
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action.
|
CWE-89
SQL Injection
|
CVE-2008-0429
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293302
|
- |
|
360_web_manager
|
360_web_manager
|
SQL injection vulnerability in form.php in 360 Web Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the IDFM parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0430
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293303
|
- |
|
idmos
|
idmos_cms
|
Directory traversal vulnerability in administrator/download.php in IDMOS (aka Phoenix) 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the fileName parameter.
|
CWE-22
Path Traversal
|
CVE-2008-0431
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293304
|
- |
|
ozjournals
|
ozjournals
|
Directory traversal vulnerability in index.php in OZJournals 2.1.1 allows remote attackers to read portions of arbitrary files via a .. (dot dot) in the id parameter in a printpreview action.
|
CWE-22
Path Traversal
|
CVE-2008-0435
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293305
|
- |
|
hp
microsoft
|
virtual_rooms
activex
|
Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote attackers to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0437
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293306
|
- |
|
alstrasoft
|
forum_pay_per_post_exchange
|
AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts.
|
CWE-255
Credentials Management
|
CVE-2008-0440
|
2017-09-29 10:30 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293307
|
- |
|
lycos
|
fileuploader.dll
|
Heap-based buffer overflow in the FileUploader.FUploadCtl.1 ActiveX control in FileUploader.dll 2.0.0.2 in Lycos FileUploader Module allows remote attackers to execute arbitrary code via a long Handw…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0443
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293308
|
- |
|
julian_pawlowski
|
lulieblog
|
SQL injection vulnerability in voircom.php in LulieBlog 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0446
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293309
|
- |
|
foojan
|
php_weblog
|
SQL injection vulnerability in index.php in Foojan WMS PHP Weblog 1.0 allows remote attackers to execute arbitrary SQL commands via the story parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0447
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293310
|
- |
|
siteman
|
siteman
|
Directory traversal vulnerability in articles.php in Siteman 1.1.9 allows remote attackers to read arbitrary files via directory traversal sequences in the cat parameter in a viewart action.
|
CWE-22
Path Traversal
|
CVE-2008-0452
|
2017-09-29 10:30 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
