|
293531
|
- |
|
detodas
|
com_restaurante
|
SQL injection vulnerability in the Detodas Restaurante (com_restaurante) 1.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail…
|
CWE-89
SQL Injection
|
CVE-2008-1465
|
2017-09-29 10:30 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293532
|
- |
|
videolan
|
vlc
|
Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c for VLC 0.8.6e allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MP4 RDRF bo…
|
CWE-189
Numeric Errors
|
CVE-2008-1489
|
2017-09-29 10:30 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293533
|
- |
|
peel
|
peel
|
Unrestricted file upload vulnerability in administrer/produits.php in PEEL, possibly 3.x and earlier, allows remote authenticated administrators to upload and execute arbitrary PHP files via a modifi…
|
CWE-20
Improper Input Validation
|
CVE-2008-1495
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293534
|
- |
|
peel
|
peel
|
Multiple SQL injection vulnerabilities in PEEL, possibly 3.x and earlier, allow remote attackers to execute arbitrary SQL commands via the (1) email parameter to (a) membre.php, and the (2) timestamp…
|
CWE-89
SQL Injection
|
CVE-2008-1496
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293535
|
- |
|
netwin
|
surgemail
|
Stack-based buffer overflow in the IMAP service in NetWin Surgemail 3.8k4-4 and earlier allows remote authenticated users to execute arbitrary code via a long first argument to the LIST command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1498
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293536
|
- |
|
sstreamtv
|
custompages
|
PHP remote file inclusion vulnerability in the SSTREAMTV custompages (com_custompages) 1.1 and earlier component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the cpa…
|
CWE-94
Code Injection
|
CVE-2008-1505
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293537
|
- |
|
peel
|
peel
|
PEEL, possibly 3.x and earlier, allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.
|
CWE-200
Information Exposure
|
CVE-2008-1506
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293538
|
- |
|
peel
|
peel
|
PEEL, possibly 3.x and earlier, has (1) a default info@peel.fr account with password admin, and (2) a default contact@peel.fr account with password cinema, which allows remote attackers to gain admin…
|
CWE-16
Configuration
|
CVE-2008-1507
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293539
|
- |
|
xlportal
|
xlportal
|
SQL injection vulnerability in index.php in XLPortal 2.2.4 and earlier allows remote attackers to execute arbitrary SQL commands via the query parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1509
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293540
|
- |
|
phpbb
|
module_xs
|
Directory traversal vulnerability in admin/admin_xs.php in eXtreme Styles module (XS-Mod) 2.3.1 and 2.4.0 for phpBB allows remote attackers to include and execute arbitrary files via a .. (dot dot) i…
|
CWE-22
Path Traversal
|
CVE-2008-1512
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
