|
293321
|
- |
|
setcms
|
setcms
|
Directory traversal vulnerability in index.php in SetCMS 3.6.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the set parameter, as demonstrated by sending…
|
CWE-22
Path Traversal
|
CVE-2008-0478
|
2017-09-29 10:30 |
2008-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293322
|
- |
|
wordpress
|
wp_cal_plugin
|
SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0490
|
2017-09-29 10:30 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293323
|
- |
|
persits
|
xupload
|
Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0492
|
2017-09-29 10:30 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293324
|
- |
|
irfanview
|
irfanview
|
fpx.dll 3.9.8.0 in the FlashPix plugin for IrfanView 4.10 allows remote attackers to execute arbitrary code via a crafted FlashPix (.FPX) file, which triggers heap corruption. NOTE: some of these de…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0493
|
2017-09-29 10:30 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293325
|
- |
|
bigware
|
bigware_shop
|
SQL injection vulnerability in main_bigware_53.tpl.php in Bigware Shop 2.0 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a results action to main_bigware_53.ph…
|
CWE-89
SQL Injection
|
CVE-2008-0498
|
2017-09-29 10:30 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293326
|
- |
|
sourceforge
|
phpmyclub
|
Directory traversal vulnerability in phpMyClub 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page_courante parameter to the top-level URI.
|
CWE-22
Path Traversal
|
CVE-2008-0501
|
2017-09-29 10:30 |
2008-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293327
|
- |
|
connectix
|
connectix_boards
|
PHP remote file inclusion vulnerability in templates/Official/part_userprofile.php in Connectix Boards 0.8.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the templat…
|
CWE-94
Code Injection
|
CVE-2008-0502
|
2017-09-29 10:30 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293328
|
- |
|
netwerk
|
smart_publisher
|
Eval injection vulnerability in admin/op/disp.php in Netwerk Smart Publisher 1.0.1 allows remote attackers to execute arbitrary PHP code via the filedata parameter.
|
CWE-94
Code Injection
|
CVE-2008-0503
|
2017-09-29 10:30 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293329
|
- |
|
wordpress
|
adserve
|
SQL injection vulnerability in adclick.php in the AdServe 0.2 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0507
|
2017-09-29 10:30 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293330
|
- |
|
ibm
|
aix
|
Multiple buffer overflows in IBM AIX 4.3 allow remote attackers to cause a denial of service (crash) or possibly gain privileges via a long argument to (1) piox25, related to piox25.c; or (2) piox25r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0509
|
2017-09-29 10:30 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
