|
284381
|
- |
|
xoops
|
xoops
|
Directory traversal vulnerability in htdocs/install/index.php in XOOPS 2.0.18 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
|
CWE-22
Path Traversal
|
CVE-2008-0612
|
2018-10-16 07:02 |
2008-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284382
|
- |
|
xoops
|
xoops
|
Open redirect vulnerability in htdocs/user.php in XOOPS 2.0.18 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the xoops_redirect parameter.
|
CWE-59
Link Following
|
CVE-2008-0613
|
2018-10-16 07:02 |
2008-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284383
|
- |
|
nero
|
mediaplayer
|
Buffer overflow in NeroMediaPlayer.exe in Nero Media Player 1.4.0.35 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (persistent crash) via a long URI in a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0619
|
2018-10-16 07:02 |
2008-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284384
|
- |
|
sap
|
sapgui
saplpd
sapsprint
|
SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service (crash) via a 0x53 LPD command, which causes the server to terminate.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0620
|
2018-10-16 07:02 |
2008-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284385
|
- |
|
sap
|
sapgui
saplpd
sapsprint
|
Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the (1) 0x01, (2) 0x02, (3) 0x03,…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0621
|
2018-10-16 07:02 |
2008-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284386
|
- |
|
sun
|
jdk
jre
|
The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 Update 3 and earlier processes external entity references even when the "external general entities" property is false, which allows …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0628
|
2018-10-16 07:02 |
2008-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284387
|
- |
|
lightblog
|
lightblog
|
Unrestricted file upload vulnerability in cp_upload_image.php in LightBlog 9.5 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it vi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0632
|
2018-10-16 07:02 |
2008-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284388
|
- |
|
anon_proxy_server
|
anon_proxy_server
|
Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service (exception) via a user name with a large number of qu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0633
|
2018-10-16 07:02 |
2008-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284389
|
- |
|
openads
|
openads
|
Unspecified vulnerability in the delivery engine in Openads 2.4.0 through 2.4.2 allows remote attackers to execute arbitrary PHP code via unknown vectors.
|
CWE-94
Code Injection
|
CVE-2008-0635
|
2018-10-16 07:02 |
2008-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284390
|
- |
|
level_platforms
|
managed_workplace_service_center
|
Level Platforms, Inc. (LPI) Managed Workplace Service Center 4.x, 5.x and 6.x allows remote attackers to obtain sensitive information via a direct request to About/SC_About.htm, which provides versio…
|
CWE-200
Information Exposure
|
CVE-2008-0636
|
2018-10-16 07:02 |
2008-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
