|
298571
|
- |
|
ceruleanstudios
|
trillian_pro
|
Heap-based buffer overflow in the XML parsing functionality in talk.dll in Cerulean Studios Trillian Pro before 3.1.10.0 allows remote attackers to execute arbitrary code via a malformed attribute in…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2408
|
2017-08-8 10:31 |
2008-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298572
|
- |
|
cerulean_studios
|
trillian
|
Stack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2409
|
2017-08-8 10:31 |
2008-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298573
|
- |
|
ibm
|
lotus_domino_web_server
|
Cross-site scripting (XSS) vulnerability in the servlet engine and Web container in the Web Server service in IBM Lotus Domino before 7.0.3 FP1, and 8.x before 8.0.1, allows remote authenticated user…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2410
|
2017-08-8 10:31 |
2008-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298574
|
- |
|
acgv.free
|
acgv_news
|
SQL injection vulnerability in glossaire.php in ACGV News 0.9.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2412
|
2017-08-8 10:31 |
2008-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298575
|
- |
|
acgv.free
|
acgv_news
|
Cross-site scripting (XSS) vulnerability in glossaire.php in ACGV News 0.9.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-2413
|
2017-08-8 10:31 |
2008-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298576
|
- |
|
aguestbook
|
an_guestbook
|
Cross-site scripting (XSS) vulnerability in send_email.php in AN Guestbook (ANG) 0.4 allows remote attackers to inject arbitrary web script or HTML via the postid parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-2414
|
2017-08-8 10:31 |
2008-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298577
|
- |
|
digitalhive
|
digitalhive
|
Directory traversal vulnerability in template/purpletech/base_include.php in DigitalHive (aka hive) 2.0 RC2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in …
|
CWE-22
Path Traversal
|
CVE-2008-2415
|
2017-08-8 10:31 |
2008-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298578
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code by triggering an error condition during certai…
|
CWE-399
Resource Management Errors
|
CVE-2008-2419
|
2017-08-8 10:31 |
2008-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298579
|
- |
|
stunnel
|
stunnel
|
The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certif…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2420
|
2017-08-8 10:31 |
2008-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298580
|
- |
|
webslider
|
webslider
|
SQL injection vulnerability in index.php in Web Slider 0.6 allows remote attackers to execute arbitrary SQL commands via the slide parameter in a slides action. NOTE: the provenance of this informat…
|
CWE-89
SQL Injection
|
CVE-2008-2422
|
2017-08-8 10:31 |
2008-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
