|
285001
|
- |
|
f5
|
big-ip
|
Web Management Console Cross-site request forgery (CSRF) vulnerability in the web management console in F5 BIG-IP 9.4.3 allows remote attackers to hijack the authentication of administrators for requ…
|
CWE-352
Origin Validation Error
|
CVE-2008-7032
|
2018-10-12 05:58 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285002
|
- |
|
maxdev
|
my_egallery
|
SQL injection vulnerability in the My_eGallery module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the gid parameter in a showgall action to modules.php. NOTE: this iss…
|
CWE-89
SQL Injection
|
CVE-2008-7038
|
2018-10-12 05:58 |
2009-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285003
|
- |
|
visualshapers
|
ezcontents
|
Multiple directory traversal vulnerabilities in ezContents 2.0.3 allow remote attackers to include and execute arbitrary local files via the (1) gsLanguage and (2) language_home parameters to modules…
|
CWE-22
Path Traversal
|
CVE-2008-7054
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285004
|
- |
|
visualshapers
|
ezcontents
|
module.php in ezContents 2.0.3 allows remote attackers to bypass the directory traversal protection mechanism to include and execute arbitrary local files via "....//" (doubled dot dot slash) sequenc…
|
CWE-22
Path Traversal
|
CVE-2008-7055
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285005
|
- |
|
aled_owen
|
one-news
|
SQL injection vulnerability in index.php in One-News Beta 2 allows remote attackers to execute arbitrary SQL commands via the q parameter.
|
CWE-89
SQL Injection
|
CVE-2008-7059
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285006
|
- |
|
one-news
|
one-news
|
Multiple cross-site scripting (XSS) vulnerabilities in One-News Beta 2 allow remote attackers to inject arbitrary HTML and web script via the (1) title or (2) content parameters in a news item to add…
|
CWE-79
Cross-site Scripting
|
CVE-2008-7060
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285007
|
- |
|
google
|
chrome
|
The tooltip manager (chrome/views/tooltip_manager.cc) in Google Chrome 0.2.149.29 Build 1798 and possibly other versions before 0.2.149.30 allows remote attackers to cause a denial of service (CPU co…
|
CWE-399
Resource Management Errors
|
CVE-2008-7061
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285008
|
- |
|
siemens
|
gigaset_c450_ip
gigaset_c475_ip
|
Siemens C450 IP and C475 IP VoIP devices allow remote attackers to cause a denial of service (disconnected calls and device reboot) via a crafted SIP packet to UDP port 5060.
|
NVD-CWE-Other
|
CVE-2008-7065
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285009
|
- |
|
kvirc
|
kvirc
|
Argument injection vulnerability in the URI handler in KVIrc 3.4.2 Shiny allows remote attackers to execute arbitrary commands via a " (quote) followed by command line switches in a (1) irc:///, (2) …
|
CWE-94
Code Injection
|
CVE-2008-7070
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285010
|
- |
|
maxum
|
rumpus
|
Multiple buffer overflows in Rumpus before 6.0.1 allow remote attackers to (1) cause a denial of service (segmentation fault) via a long HTTP verb in the HTTP component; and allow remote authenticate…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-7078
|
2018-10-12 05:58 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
