|
284481
|
- |
|
netrisk
|
netrisk
|
SQL injection vulnerability in index.php in NetRisk 1.9.7 and possibly earlier versions allows remote attackers to execute arbitrary SQL commands via the pid parameter in a profile page (possibly pro…
|
CWE-89
SQL Injection
|
CVE-2008-0185
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284482
|
- |
|
phprisk
|
netrisk
|
Cross-site scripting (XSS) vulnerability in index.php in NetRisk 1.9.7 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter, possibly related to …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0186
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284483
|
- |
|
awesometemplateengine
|
awesometemplateengine
|
Multiple cross-site scripting (XSS) vulnerabilities in templates/example_template.php in AwesomeTemplateEngine allow remote attackers to inject arbitrary web script or HTML via the (1) data[title], (…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0190
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284484
|
- |
|
wordpress
|
wordpress
|
WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database str…
|
CWE-200
Information Exposure
|
CVE-2008-0191
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284485
|
- |
|
wordpress
|
wordpress
|
Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the popuptitle parameter to (1) wp-admin/post.php …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0192
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284486
|
- |
|
wordpress
|
wordpress
|
Cross-site scripting (XSS) vulnerability in wp-db-backup.php in WordPress 2.0.11 and earlier, and possibly 2.1.x through 2.3.x, allows remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0193
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284487
|
- |
|
wordpress
|
wordpress
|
Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0.3 and earlier allows remote attackers to read arbitrary files, delete arbitrary files, and cause a denial of service via a .. (d…
|
CWE-22
Path Traversal
|
CVE-2008-0194
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284488
|
- |
|
wordpress
|
wordpress
|
WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to certain PHP scripts under wp-admin/, which reveals the path in various…
|
CWE-200
Information Exposure
|
CVE-2008-0195
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284489
|
- |
|
wordpress
|
wordpress
|
Multiple directory traversal vulnerabilities in WordPress 2.0.11 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the page parameter to certain PHP scripts under w…
|
CWE-22
Path Traversal
|
CVE-2008-0196
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284490
|
- |
|
wordpress
|
wp-contactform
|
Multiple cross-site scripting (XSS) vulnerabilities in wp-contact-form/options-contactform.php in the WP-ContactForm 1.5 alpha and earlier plugin for WordPress allow remote attackers to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0197
|
2018-10-16 06:58 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
