|
314741
|
- |
|
oocomments
|
oocomments
|
Multiple PHP remote file inclusion vulnerabilities in ooComments 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the PathToComment parameter for (1) classes/class_admin.php and …
|
CWE-94
Code Injection
|
CVE-2008-1511
|
2008-09-5 13:00 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314742
|
- |
|
avici
hitachi
|
router
gr2000
gr3000
gr4000
|
Unspecified vulnerability in Avici routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue …
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2008-2169
|
2008-09-5 13:00 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314743
|
- |
|
century_software
|
router
|
Unspecified vulnerability in Century routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issu…
|
CWE-20
Improper Input Validation
|
CVE-2008-2170
|
2008-09-5 13:00 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314744
|
- |
|
yamaha
|
router
|
Unspecified vulnerability in Yamaha routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue…
|
CWE-20
Improper Input Validation
|
CVE-2008-2173
|
2008-09-5 13:00 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314745
|
- |
|
runesoft
|
cerberus_cms
|
Cross-site scripting (XSS) vulnerability in Runesoft Cerberus CMS before 3_1.4_0.9 allows remote attackers to inject arbitrary web script or HTML via a cerberus_user cookie.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3397
|
2008-09-5 13:00 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314746
|
- |
|
spacetag
|
lacoodast
|
Session fixation vulnerability in SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2008-3738
|
2008-09-5 13:00 |
2008-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314747
|
- |
|
microsoft
|
windows_vista
|
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sen…
|
CWE-200
Information Exposure
|
CVE-2008-3893
|
2008-09-5 13:00 |
2008-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314748
|
- |
|
microsoft
|
windows_vista
|
Upgrade to Vista Service Pack 1
|
CWE-200
Information Exposure
|
CVE-2008-3893
|
2008-09-5 13:00 |
2008-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314749
|
- |
|
apple
omnigroup
|
safari
webkit
omniweb
mac_os_x
|
WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as dem…
|
CWE-399
Resource Management Errors
|
CVE-2007-0342
|
2008-09-5 13:00 |
2007-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314750
|
- |
|
php
|
php
|
Integer overflow in the 16 bit variable reference counter in PHP 4 allows context-dependent attackers to execute arbitrary code by overflowing this counter, which causes the same variable to be destr…
|
CWE-189
Numeric Errors
|
CVE-2007-1383
|
2008-09-5 13:00 |
2007-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
