|
299101
|
- |
|
wordpress
|
download_monitor_plugin
|
SQL injection vulnerability in wp-download_monitor/download.php in the Download Monitor 2.0.6 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter. NOT…
|
CWE-89
SQL Injection
|
CVE-2008-2034
|
2017-08-8 10:30 |
2008-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299102
|
- |
|
bluemoon
xoops
|
backpack
bmsurvey
newbb_fileup
news_fileup
popnupblog
xoops
xoops_cube
|
Cross-site scripting (XSS) vulnerability in the Bluemoon, Inc. (1) BackPack 0.91 and earlier, (2) BmSurvey 0.84 and earlier, (3) newbb_fileup 1.83 and earlier, (4) News_embed (news_fileup) 1.44 and e…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2035
|
2017-08-8 10:30 |
2008-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299103
|
- |
|
editeurscripts
|
escontacts
|
Multiple cross-site scripting (XSS) vulnerabilities in EditeurScripts EsContacts 1.0 allow remote authenticated users to inject arbitrary web script or HTML via the msg parameter to (1) login.php, (2…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2037
|
2017-08-8 10:30 |
2008-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299104
|
- |
|
turnkey_solutions
|
sunshop_shopping_cart
|
Multiple SQL injection vulnerabilities in admin/adminindex.php in Turnkey Web Tools SunShop Shopping Cart 4.1.0 allow remote authenticated administrators to execute arbitrary SQL commands via the (1)…
|
CWE-89
SQL Injection
|
CVE-2008-2038
|
2017-08-8 10:30 |
2008-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299105
|
- |
|
peercast
|
peercast
|
Stack-based buffer overflow in the HTTP::getAuthUserPass function (core/common/http.cpp) in Peercast 0.1218 and gnome-peercast allows remote attackers to cause a denial of service (crash) and possibl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2040
|
2017-08-8 10:30 |
2008-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299106
|
- |
|
egroupware
|
egroupware
|
Multiple unspecified vulnerabilities in eGroupWare before 1.4.004 have unspecified attack vectors and "grave" impact when the web server has write access to a directory under the web document root.
|
NVD-CWE-noinfo
CWE-94
Code Injection
|
CVE-2008-2041
|
2017-08-8 10:30 |
2008-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299107
|
- |
|
cpanel
|
cpanel
|
Multiple cross-site request forgery (CSRF) vulnerabilities in cPanel, possibly 11.18.3 and 11.19.3, allow remote attackers to (1) execute arbitrary code via the command1 parameter to frontend/x2/cron…
|
CWE-352
Origin Validation Error
|
CVE-2008-2043
|
2017-08-8 10:30 |
2008-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299108
|
- |
|
cpanel
|
cpanel
|
Additional information can be found at:
http://secunia.com/advisories/30027/
http://www.frsirt.com/english/advisories/2008/1401
http://blog.cpanel.net/?p=39
|
CWE-352
Origin Validation Error
|
CVE-2008-2043
|
2017-08-8 10:30 |
2008-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299109
|
- |
|
softpedia
|
sitexs_cms
|
Cross-site scripting (XSS) vulnerability in index.php in Softpedia SiteXS CMS 0.1.1 Pre-Alpha allows remote attackers to inject arbitrary web script or HTML via the user parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-2046
|
2017-08-8 10:30 |
2008-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299110
|
- |
|
e-post_corporation
|
mail_server
|
The POP3 server (EPSTPOP3S.EXE) 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the…
|
CWE-200
Information Exposure
|
CVE-2008-2049
|
2017-08-8 10:30 |
2008-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
