|
293561
|
- |
|
lotus_web_studios_inc
|
smoothflash
|
SQL injection vulnerability in admin_view_image.php in Smoothflash allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1623
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293562
|
- |
|
lotus_web_studios_inc
|
smoothflash
|
Additional information can be found at:
http://www.securityfocus.com/bid/28503
|
CWE-89
SQL Injection
|
CVE-2008-1623
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293563
|
- |
|
whorl_ltd
|
jshop_server
|
Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter.
|
CWE-22
Path Traversal
|
CVE-2008-1624
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293564
|
- |
|
raven_php_scripts
|
keep_it_simple_guest_book
|
Directory traversal vulnerability in view_private.php in Keep It Simple Guest Book (KISGB) 5.0.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in…
|
CWE-22
Path Traversal
|
CVE-2008-1635
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293565
|
- |
|
neat_web
|
neat-web
|
SQL injection vulnerability in index.php in Neat weblog 0.2 allows remote attackers to execute arbitrary SQL commands via the articleId parameter in a show action, probably related to the showArticle…
|
CWE-89
SQL Injection
|
CVE-2008-1639
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293566
|
- |
|
jgs-xa
|
jgs_treffen
|
SQL injection vulnerability in jgs_treffen.php in the JGS-XA JGS-Treffen 2.0.2 and earlier addon for Woltlab Burning Board (wBB) allows remote attackers to execute arbitrary SQL commands via the view…
|
CWE-89
SQL Injection
|
CVE-2008-1640
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293567
|
- |
|
guillaume_meister
|
php_spammanager
|
Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote attackers to read arbitrary local files via a .. (dot dot) in the filename parameter.
|
CWE-22
Path Traversal
|
CVE-2008-1645
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293568
|
- |
|
arnos_toolbox
wordpress
|
wp-download
wp_download
|
SQL injection vulnerability in wp-download.php in the WP-Download 1.2 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the dl_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1646
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293569
|
- |
|
chilkat_software
|
chilkathttp_activex
|
The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, whi…
|
CWE-20
Improper Input Validation
|
CVE-2008-1647
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293570
|
- |
|
adobe
|
flash_player
|
Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote attackers to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigat…
|
CWE-352
Origin Validation Error
|
CVE-2008-1654
|
2017-09-29 10:30 |
2008-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
