|
284331
|
- |
|
tintin
|
tintin\+\+
wintin\+\+
|
The process_chat_input function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to cause a denial of service (application crash) via a YES message without a newline character, which tr…
|
CWE-20
Improper Input Validation
|
CVE-2008-0672
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284332
|
- |
|
tintin
|
tintin\+\+
wintin\+\+
|
TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request, which allows remote attackers to truncate a…
|
NVD-CWE-Other
|
CVE-2008-0673
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284333
|
- |
|
pcre
|
pcre
|
Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points g…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0674
|
2018-10-16 07:02 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284334
|
- |
|
the_everything_development_company
|
the_everything_development_engine
|
SQL injection vulnerability in cms/index.pl in The Everything Development Engine in The Everything Development System Pre-1.0 and earlier allows remote attackers to execute arbitrary SQL commands via…
|
CWE-89
SQL Injection
|
CVE-2008-0675
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284335
|
- |
|
phpshop
|
phpshop
|
SQL injection vulnerability in index.php in PHPShop 0.8.1 allows remote attackers to execute arbitrary SQL commands via the product_id parameter, as demonstrated by a shop/flypage action.
|
CWE-89
SQL Injection
|
CVE-2008-0681
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284336
|
- |
|
youtube
|
clone_script
|
Cross-site scripting (XSS) vulnerability in siteadmin/editor_files/includes/load_message.php in the Youtube Clone Script allows remote attackers to inject arbitrary web script or HTML via the lang[pl…
|
CWE-94
Code Injection
|
CVE-2008-0687
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284337
|
- |
|
smartscript
|
domain_trader
|
Cross-site scripting (XSS) vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a viewcategory action.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0688
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284338
|
- |
|
simon_elvery
wordpress
|
wp-footnotes
|
Multiple cross-site scripting (XSS) vulnerabilities in admin_panel.php in the Simon Elvery WP-Footnotes 2.2 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0691
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284339
|
- |
|
south_river_technologies
|
titan_ftp_server
|
Multiple heap-based buffer overflows in Titan FTP Server 6.03 and 6.0.5.549 allow remote attackers to cause a denial of service (daemon crash or hang) and possibly execute arbitrary code via a long a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0702
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284340
|
- |
|
sflog
|
sflog
|
Multiple directory traversal vulnerabilities in sflog! 0.96 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) permalink or (2) section parameter to index.php, possibly invo…
|
CWE-22
Path Traversal
|
CVE-2008-0703
|
2018-10-16 07:02 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
