|
298541
|
- |
|
smarty
|
smarty
|
The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 before r2797 allows remote attackers to execute arbitrary PHP code via vectors related to templates and (1) a dolla…
|
CWE-94
Code Injection
|
CVE-2008-4810
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298542
|
- |
|
smarty
|
smarty
|
The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 r2797 and earlier allows remote attackers to execute arbitrary PHP code via vectors related to templates and a \ (b…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4811
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298543
|
- |
|
rpath
|
initscripts
|
rc.sysinit in initscripts 8.12-8.21 and 8.56.15-0.1 on rPath allows local users to delete arbitrary files via a symlink attack on a directory under (1) /var/lock or (2) /var/run. NOTE: this issue ex…
|
CWE-59
Link Following
|
CVE-2008-4832
|
2017-08-8 10:32 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298544
|
- |
|
ffmpeg
|
ffmpeg
|
Multiple buffer overflows in libavformat/utils.c in FFmpeg 0.4.9 before r14715, as used by MPlayer, allow context-dependent attackers to have an unknown impact via vectors related to execution of DTS…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4866
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298545
|
- |
|
ffmpeg
|
ffmpeg
|
Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_S…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4867
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298546
|
- |
|
ffmpeg
|
ffmpeg
|
Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random po…
|
NVD-CWE-noinfo
|
CVE-2008-4868
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298547
|
- |
|
ffmpeg
|
ffmpeg
|
FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a "Tcp/udp memory leak."
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-4869
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298548
|
- |
|
itechscripts
|
itechbids
|
Cross-site scripting (XSS) vulnerability in bidhistory.php in iTechBids Gold 5.0 allows remote attackers to inject arbitrary web script or HTML via the item_id parameter. NOTE: the provenance of thi…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4872
|
2017-08-8 10:32 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298549
|
- |
|
planetluc
|
signme
|
Cross-site scripting (XSS) vulnerability in signme.inc.php in Planetluc SignMe 1.5 before 1.55 allows remote attackers to inject arbitrary web script or HTML via the hash parameter. NOTE: some of th…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4891
|
2017-08-8 10:32 |
2008-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298550
|
- |
|
planetluc
|
mygallery
|
Cross-site scripting (XSS) vulnerability in gallery.inc.php in Planetluc MyGallery 1.7.2 and earlier, and possibly other versions before 1.8.1, allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2008-4892
|
2017-08-8 10:32 |
2008-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
