|
285241
|
- |
|
phpcrs
|
phpcrs
|
Directory traversal vulnerability in frame.php in phpcrs 2.06 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) i…
|
CWE-22
Path Traversal
|
CVE-2008-6074
|
2018-10-12 05:56 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285242
|
- |
|
txtshop
|
txtshop
|
Directory traversal vulnerability in header.php in TXTshop beta 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
|
CWE-22
Path Traversal
|
CVE-2008-6083
|
2018-10-12 05:56 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285243
|
- |
|
rportal
|
rportal
|
PHP remote file inclusion vulnerability in index.php in RPortal 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the file_op parameter.
|
CWE-94
Code Injection
|
CVE-2008-6099
|
2018-10-12 05:56 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285244
|
- |
|
joomlaapps
|
com_mdigg
|
SQL injection vulnerability in the mDigg (com_mdigg) component 2.2.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cagtegory parameter in a story_lists action to index…
|
CWE-89
SQL Injection
|
CVE-2008-6149
|
2018-10-12 05:56 |
2009-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285245
|
- |
|
sun
|
jdk
jre
sdk
|
The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier does not properly enforce context of ZoneIn…
|
NVD-CWE-Other
|
CVE-2008-5353
|
2018-10-12 05:55 |
2008-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285246
|
- |
|
ffdshow-tryout
|
ffdshow
|
Buffer overflow in the URL processing in ffdshow (aka ffdshow-tryout) before SVN revision 2347 allows remote attackers to execute arbitrary code via a long URL.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5381
|
2018-10-12 05:55 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285247
|
- |
|
privacy-cd
|
unbuntu_privacy_remix
|
UPR-Kernel in Ubuntu Privacy Remix (UPR) before 8.04_r1 includes kernel support for mounting RAID arrays, which might allow remote attackers to bypass intended isolation mechanisms by (1) reading fro…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5393
|
2018-10-12 05:55 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285248
|
- |
|
debian
|
shadow
|
/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file r…
|
CWE-59
Link Following
|
CVE-2008-5394
|
2018-10-12 05:55 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285249
|
- |
|
cerulean_studios
ceruleanstudios
|
trillian
trillian_pro
|
Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a long image filename, related to "AIM IMG Tag Parsin…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5401
|
2018-10-12 05:55 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285250
|
- |
|
cerulean_studios
ceruleanstudios
|
trillian
trillian_pro
|
Double free vulnerability in the XML parser in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a crafted XML expression, related to the "IMG SRC ID."
|
CWE-399
Resource Management Errors
|
CVE-2008-5402
|
2018-10-12 05:55 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
