|
297711
|
- |
|
3cx
|
phone_system
|
3CX Phone System 6.0.806.0 allows remote attackers to cause a denial of service (unstable service or crash) via unspecified vectors, as demonstrated by vulnerability scans from Nessus or SAINT.
|
NVD-CWE-noinfo
|
CVE-2008-6895
|
2017-08-17 10:29 |
2009-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297712
|
- |
|
3cx
|
phone_system
|
login.php in 3CX Phone System 6.0.806.0, when 100% disk capacity is reached, allows remote attackers to gain sensitive information via unspecified vectors that reveal the installation path.
|
CWE-200
Information Exposure
|
CVE-2008-6896
|
2017-08-17 10:29 |
2009-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297713
|
- |
|
sophos
|
anti-virus
anti-virus7.6.3
|
Multiple unspecified vulnerabilities in Sophos SAVScan 4.33.0 for Linux, and possibly other products and versions, allow remote attackers to cause a denial of service (segmentation fault) and possibl…
|
NVD-CWE-noinfo
|
CVE-2008-6904
|
2017-08-17 10:29 |
2009-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297714
|
- |
|
marc_ingram
|
services
|
Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, uses an insecure hash when signing requests, which allows remote attackers to impersonate other users and gain privileges.
|
CWE-310
Cryptographic Issues
|
CVE-2008-6908
|
2017-08-17 10:29 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297715
|
- |
|
marc_ingram
|
services
|
Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, does not sign all required data in requests, which has unspecified impact, probably related to man-in-the-middle attacks tha…
|
CWE-310
Cryptographic Issues
|
CVE-2008-6909
|
2017-08-17 10:29 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297716
|
- |
|
marc_ingram
|
services
|
Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, does not use timeouts for signed requests, which allows remote attackers to impersonate other users and gain privileges via …
|
CWE-310
Cryptographic Issues
|
CVE-2008-6910
|
2017-08-17 10:29 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297717
|
- |
|
intelliants
|
esyndicat
|
Multiple cross-site scripting (XSS) vulnerabilities in register.php in eSyndiCat Directory 2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) username, (2) email, (3) passw…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6924
|
2017-08-17 10:29 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297718
|
- |
|
zenphoto
|
zenphoto
|
Cross-site scripting (XSS) vulnerability in function.php in Zenphoto 1.1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the "request logging" feature. NO…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6925
|
2017-08-17 10:29 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297719
|
- |
|
jabber
|
exodus
|
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an x…
|
CWE-94
Code Injection
|
CVE-2008-6937
|
2017-08-17 10:29 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297720
|
- |
|
icdevgroup
|
interchange
|
Multiple cross-site scripting (XSS) vulnerabilities in Interchange 5.7 before 5.7.1, 5.6 before 5.6.1, and 5.4 before 5.4.3 allow remote attackers to inject arbitrary web script or HTML via (1) the m…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6945
|
2017-08-17 10:29 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
