|
298151
|
- |
|
drupal
|
header_image
|
Unspecified vulnerability in the Header Image Module before 5.x-1.1 for Drupal allows remote attackers to access the administration pages via unknown attack vectors.
|
CWE-287
Improper Authentication
|
CVE-2008-0823
|
2017-08-8 10:29 |
2008-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298152
|
- |
|
e-vision
|
e-vision_cms
|
Multiple SQL injection vulnerabilities in e-Vision CMS 2.02 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) iframe.php and (2) print.php. NOTE: the provenance of…
|
CWE-89
SQL Injection
|
CVE-2008-0856
|
2017-08-8 10:29 |
2008-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298153
|
- |
|
adobe
|
acrobat_reader
|
acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling.
|
CWE-59
Link Following
|
CVE-2008-0883
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298154
|
- |
|
redhat
|
directory_server
|
Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0890
|
2017-08-8 10:29 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298155
|
- |
|
redhat
|
directory_server
|
Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, does not properly restrict access to CGI scripts, which allows remote attackers to perform administrative actions.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0893
|
2017-08-8 10:29 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298156
|
- |
|
schoolwires
|
academic_portal
|
SQL injection vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to execute arbitrary SQL commands via the c parameter. NOTE: the provenance of this information is un…
|
CWE-89
SQL Injection
|
CVE-2008-0908
|
2017-08-8 10:29 |
2008-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298157
|
- |
|
f-secure
|
f-secure_anti-virus
f-secure_anti-virus_client_security
f-secure_anti-virus_for_linux
f-secure_anti-virus_for_workstations
f-secure_anti-virus_linux_client_security
f-secure_internet_s…
|
Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0910
|
2017-08-8 10:29 |
2008-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298158
|
- |
|
astats
joomla
|
astatspro
com_astatspro
|
SQL injection vulnerability in includes/count_dl_or_link.inc.php in the astatsPRO (com_astatspro) 1.0.1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id para…
|
CWE-89
SQL Injection
|
CVE-2008-0918
|
2017-08-8 10:29 |
2008-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298159
|
- |
|
novell
|
edirectory
|
Cross-site scripting (XSS) vulnerability in the iMonitor interface in Novell eDirectory 8.7.3.x before 8.7.3 sp10, and 8.8.x before 8.8.2 ftf2, allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0925
|
2017-08-8 10:29 |
2008-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298160
|
- |
|
ibm
|
informix_dynamic_server
|
Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 7.x through 11.x allows remote attackers to gain privileges via a malformed connection request packet.
|
NVD-CWE-noinfo
|
CVE-2008-0949
|
2017-08-8 10:29 |
2008-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
