|
284401
|
- |
|
pcre
|
pcre
|
Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points g…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0674
|
2018-10-16 07:02 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284402
|
- |
|
the_everything_development_company
|
the_everything_development_engine
|
SQL injection vulnerability in cms/index.pl in The Everything Development Engine in The Everything Development System Pre-1.0 and earlier allows remote attackers to execute arbitrary SQL commands via…
|
CWE-89
SQL Injection
|
CVE-2008-0675
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284403
|
- |
|
phpshop
|
phpshop
|
SQL injection vulnerability in index.php in PHPShop 0.8.1 allows remote attackers to execute arbitrary SQL commands via the product_id parameter, as demonstrated by a shop/flypage action.
|
CWE-89
SQL Injection
|
CVE-2008-0681
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284404
|
- |
|
youtube
|
clone_script
|
Cross-site scripting (XSS) vulnerability in siteadmin/editor_files/includes/load_message.php in the Youtube Clone Script allows remote attackers to inject arbitrary web script or HTML via the lang[pl…
|
CWE-94
Code Injection
|
CVE-2008-0687
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284405
|
- |
|
smartscript
|
domain_trader
|
Cross-site scripting (XSS) vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a viewcategory action.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0688
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284406
|
- |
|
simon_elvery
wordpress
|
wp-footnotes
|
Multiple cross-site scripting (XSS) vulnerabilities in admin_panel.php in the Simon Elvery WP-Footnotes 2.2 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0691
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284407
|
- |
|
south_river_technologies
|
titan_ftp_server
|
Multiple heap-based buffer overflows in Titan FTP Server 6.03 and 6.0.5.549 allow remote attackers to cause a denial of service (daemon crash or hang) and possibly execute arbitrary code via a long a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0702
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284408
|
- |
|
sflog
|
sflog
|
Multiple directory traversal vulnerabilities in sflog! 0.96 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) permalink or (2) section parameter to index.php, possibly invo…
|
CWE-22
Path Traversal
|
CVE-2008-0703
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284409
|
- |
|
webmin
|
usermin
webmin
|
Cross-site scripting (XSS) vulnerability in Webmin 1.370 and 1.390 and Usermin 1.300 and 1.320 allows remote attackers to inject arbitrary web script or HTML via the search parameter to webmin_search…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0720
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284410
|
- |
|
the_everything_development_company
|
the_everything_development_engine
|
The Everything Development Engine in The Everything Development System Pre-1.0 and earlier stores passwords in cleartext in a database, which makes it easier for context-dependent attackers to obtain…
|
CWE-255
Credentials Management
|
CVE-2008-0724
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
