CVE-2008-1973 (subedit_player)

Heap-based buffer overflow in SubEdit Player build 4056 and 4066 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long subtitle file.

CVE-2008-1985 (digitalhive)

Cross-site scripting (XSS) vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php.

CVE-2008-1985 (digitalhive)

Cross-site scripting (XSS) vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php.

CVE-2008-1985 (digitalhive)

Cross-site scripting (XSS) vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php.

CVE-2008-1985 (digitalhive)

Cross-site scripting (XSS) vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php.

CVE-2008-1971 (phshoutbox_final)

phShoutBox Final 1.5 and earlier only checks passwords when specified in $_POST, which allows remote attackers to gain privileges by setting the (1) phadmin cookie to admin.php, or (2) in 1.4 and earlier, the ssbadmin cookie to shoutadmin.php.

CVE-2008-1975 (e_reserve)

SQL injection vulnerability in index.php in E-RESERV 2.1 allows remote attackers to execute arbitrary SQL commands via the ID_loc parameter.

CVE-2008-1971 (phshoutbox_final)

phShoutBox Final 1.5 and earlier only checks passwords when specified in $_POST, which allows remote attackers to gain privileges by setting the (1) phadmin cookie to admin.php, or (2) in 1.4 and earlier, the ssbadmin cookie to shoutadmin.php.

CVE-2008-1985 (digitalhive)

Cross-site scripting (XSS) vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php.

CVE-2008-1973 (subedit_player)

Heap-based buffer overflow in SubEdit Player build 4056 and 4066 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long subtitle file.

« Previous Entries Next Entries »

Search Box

Badware Alerts

• CVE-2008-2092 (SPA-2102 Phone Adapter)
• CVE-2008-2092 (SPA-2102 Phone Adapter)
• CVE-2008-2080 (Common Data Format)
• CVE-2008-2090 (Solaris)
• CVE-2008-2093 (community_builder, com_comprofiler)
• CVE-2008-2093 (community_builder, com_comprofiler)
• CVE-2008-2080 (Common Data Format)
• CVE-2008-2089 (Solaris)
• CVE-2008-2080 (Common Data Format)
• CVE-2008-2080 (Common Data Format)
• CVE-2008-2093 (community_builder, com_comprofiler)
• CVE-2008-2080 (Common Data Format)
• CVE-2008-2092 (SPA-2102 Phone Adapter)
• CVE-2008-2080 (Common Data Format)
• CVE-2008-2091 (kubelance)
• CVE-2008-2089 (Solaris)
• CVE-2008-2092 (SPA-2102 Phone Adapter)
• CVE-2008-2093 (community_builder, com_comprofiler)
• CVE-2008-2092 (SPA-2102 Phone Adapter)
• CVE-2008-2092 (SPA-2102 Phone Adapter)

Related Sites

• Chart Vulnerabilities - Chart vulnerabilities discovered within a product

Categories

• Badware
• Badware News

Meta

• Log in
• Main Entries Rss
• Comments Rss