|
305111
|
- |
|
sclek
|
jsite
|
SQL injection vulnerability in admin/login.php in jSite 1.0 OE allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this information is unkno…
|
CWE-89
SQL Injection
|
CVE-2008-7301
|
2024-11-21 09:58 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305112
|
- |
|
sun
|
opensolaris
sunos
|
The labeled networking implementation in Solaris Trusted Extensions in Sun Solaris 10 and OpenSolaris snv_39 through snv_67, when a labeled zone is in the installed state, allows remote authenticated…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7300
|
2024-11-21 09:58 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305113
|
- |
|
ibm
|
tivoli_federated_identity_manager
|
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2 uses an incomplete SAML 1.x browser-artifact, which allows remote OpenID providers to spoof assertions via vectors related to the Iss…
|
CWE-20
Improper Input Validation
|
CVE-2008-7299
|
2024-11-21 09:58 |
2011-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305114
|
- |
|
google
android
|
android
android_browser
|
The Android browser in Android cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7298
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305115
|
- |
|
opera
|
opera_browser
|
Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7297
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305116
|
- |
|
apple
|
safari
|
Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7296
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305117
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7295
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305118
|
- |
|
google
|
chrome
|
Google Chrome before 4.0.211.0 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7294
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305119
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 4 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7293
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305120
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.20.x before 2.20.5, 2.22.x before 2.22.3, and 3.0.x before 3.0.3 on Windows does not delete the temporary files associated with uploaded attachments, which allows local users to obtain sen…
|
CWE-200
Information Exposure
|
CVE-2008-7292
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
