Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-10-09 | CVE-2008-4524 | SQL Injection vulnerability in Adaptcms 1.3 SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote attackers to execute arbitrary SQL commands via the user_name parameter. | 7.5 |
2008-10-09 | CVE-2008-4523 | SQL Injection vulnerability in IP REG IP REG 0.1/0.2/0.3 SQL injection vulnerability in login.php in IP Reg 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the user_name parameter. | 7.5 |
2008-10-09 | CVE-2008-4522 | Path Traversal vulnerability in Jesse-Web Jmweb MP3 Music Audio Search and Download Script Multiple directory traversal vulnerabilities in JMweb MP3 Music Audio Search and Download Script allow remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2008-10-09 | CVE-2008-4521 | SQL Injection vulnerability in PHP-Fusion World of Warcraft Tracker Infusion Module 2.0 SQL injection vulnerability in thisraidprogress.php in the World of Warcraft tracker infusion (raidtracker_panel) module 2.0 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the INFO_RAID_ID parameter. | 7.5 |
2008-10-09 | CVE-2008-4520 | Cross-Site Scripting vulnerability in Autonessus Cross-site scripting (XSS) vulnerability in bulk_update.pl in AutoNessus before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the remark parameter. | 4.3 |
2008-10-09 | CVE-2008-4519 | Path Traversal vulnerability in Fastpublish CMS 1.9.9.9.9D/1.9999D Multiple directory traversal vulnerabilities in Fastpublish CMS 1.9999 d allow remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2008-10-09 | CVE-2008-4518 | SQL Injection vulnerability in Fastpublish CMS 1.9.9.9.9D/1.9999D Multiple SQL injection vulnerabilities in Fastpublish CMS 1.9.9.9.9 d (1.9999 d) allow remote attackers to execute arbitrary SQL commands via the (1) sprache parameter to index2.php and the (2) artikel parameter to index.php. | 7.5 |
2008-10-09 | CVE-2008-4517 | SQL Injection vulnerability in Geccbblite 2.0 SQL injection vulnerability in leggi.php in geccBBlite 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2008-10-09 | CVE-2008-4516 | SQL Injection vulnerability in Galerie 3.2 SQL injection vulnerability in galerie.php in Galerie 3.2 allows remote attackers to execute arbitrary SQL commands via the pic parameter. | 7.5 |
2008-10-09 | CVE-2008-4515 | Improper Authentication vulnerability in Blue Coat Systems K9 web Protection 4.0.230 Blue Coat K9 Web Protection 4.0.230 Beta relies on client-side JavaScript as a protection mechanism, which allows remote attackers to bypass authentication and access the (1) summary, (2) detail, (3) overrides, and (4) pwemail pages by disabling JavaScript. | 7.5 |