|
297691
|
- |
|
mole-group
|
real_estate_script
|
Mole Group Real Estate Script 1.1 and earlier stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information. NOTE: the provenance of this information is unk…
|
CWE-255
Credentials Management
|
CVE-2008-6818
|
2017-08-17 10:29 |
2009-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297692
|
- |
|
ibm
|
db2
|
Buffer overflow in the DAS server in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 might allow attackers to execute arbitrary code or cause a denial of service (application crash) via uns…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-6821
|
2017-08-17 10:29 |
2009-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297693
|
- |
|
citrix
|
web_interface
|
The disconnection feature in Citrix Web Interface 5.0 and 5.0.1 for Java Application Servers does not properly terminate a user's web interface session, which allows attackers with access to the same…
|
NVD-CWE-Other
|
CVE-2008-6830
|
2017-08-17 10:29 |
2009-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297694
|
- |
|
atlassian
|
jira
|
Multiple cross-site scripting (XSS) vulnerabilities in Atlassian JIRA Enterprise Edition 3.13 allow remote attackers to inject arbitrary web script or HTML via the (1) fullname (Full Name) parameter …
|
CWE-79
Cross-site Scripting
|
CVE-2008-6831
|
2017-08-17 10:29 |
2009-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297695
|
- |
|
atlassian
|
jira
|
Cross-site request forgery (CSRF) vulnerability in Atlassian JIRA Enterprise Edition 3.13 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. NOTE: the p…
|
CWE-352
Origin Validation Error
|
CVE-2008-6832
|
2017-08-17 10:29 |
2009-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297696
|
- |
|
zoph
|
zoph
|
SQL injection vulnerability in Zoph 0.7.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different issue than CVE-2008-3258. NOTE: the provenance of this info…
|
CWE-89
SQL Injection
|
CVE-2008-6837
|
2017-08-17 10:29 |
2009-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297697
|
- |
|
zoph
|
zoph
|
Cross-site scripting (XSS) vulnerability in search.php in Zoph 0.7.2.1 allows remote attackers to inject arbitrary web script or HTML via the _off parameter. NOTE: the provenance of this information…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6838
|
2017-08-17 10:29 |
2009-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297698
|
- |
|
tgs-cms
|
tgs_content_management
|
Multiple cross-site scripting (XSS) vulnerabilities in TGS Content Management 0.3.2r2 allow remote attackers to inject arbitrary web script or HTML via the (1) msg and (2) goodmsg parameters to (a) l…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6839
|
2017-08-17 10:29 |
2009-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297699
|
- |
|
christof_bruyland
|
v-webmail
|
Multiple PHP remote file inclusion vulnerabilities in V-webmail 1.6.4 allow remote attackers to execute arbitrary PHP code via a URL in the (1) CONFIG[pear_dir] parameter to (a) Mail/RFC822.php, (b) …
|
CWE-94
Code Injection
|
CVE-2008-6840
|
2017-08-17 10:29 |
2009-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297700
|
- |
|
preproject
|
pre_asp_job_board
|
Cross-site scripting (XSS) vulnerability in Employee/emp_login.asp in Pre ASP Job Board allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6847
|
2017-08-17 10:29 |
2009-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
