|
298781
|
- |
|
phpmyadmin
|
phpmyadmin
|
Cross-site request forgery (CSRF) vulnerability in phpMyAdmin before 2.11.7.1 allows remote attackers to perform unauthorized actions via a link or IMG tag to (1) the db parameter in the "Creating a …
|
CWE-352
Origin Validation Error
|
CVE-2008-3197
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298782
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 3.x before 3.0.1 allows remote attackers to inject arbitrary web script into a chrome document via unspecified vectors, as demonstrated by injection into a XUL error page. NOTE: this…
|
CWE-94
Code Injection
|
CVE-2008-3198
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298783
|
- |
|
resiprocate
|
resiprocate
|
Multiple unspecified vulnerabilities in ReSIProcate before 1.3.4 allow remote attackers to cause a denial of service (stack consumption) via unknown network traffic with a large "bytes-in-memory/byte…
|
CWE-20
Improper Input Validation
|
CVE-2008-3199
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298784
|
- |
|
pagefusion
|
pagefusion
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Pagefusion 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) acct_fname and (2) acct_lname parameters i…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3201
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298785
|
- |
|
xomol
|
xomol_cms
|
Cross-site scripting (XSS) vulnerability in index.php in Xomol CMS 1.2 allows remote attackers to inject arbitrary web script or HTML via the current_url parameter in a tellafriend action. NOTE: the…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3202
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298786
|
- |
|
scripteen
|
free_image_hosting_script
|
Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/lo…
|
CWE-89
SQL Injection
|
CVE-2008-3212
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298787
|
- |
|
thekelleys
|
dnsmasq
|
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, re…
|
CWE-20
Improper Input Validation
|
CVE-2008-3214
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298788
|
- |
|
clam_anti-virus
|
clamav
|
libclamav/petite.c in ClamAV before 0.93.3 allows remote attackers to cause a denial of service via a malformed Petite file that triggers an out-of-bounds memory access. NOTE: this issue exists beca…
|
CWE-399
Resource Management Errors
|
CVE-2008-3215
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298789
|
- |
|
debian
|
projectl
|
The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack.
|
CWE-59
Link Following
|
CVE-2008-3216
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298790
|
- |
|
powerdns
|
recursor
|
PowerDNS Recursor before 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. NO…
|
CWE-189
Numeric Errors
|
CVE-2008-3217
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
