• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors
Home » CVE’s

CVE’s


CVE
Vendors
Products
Updated
CVSS v2
CVSS v3
CVE-2008-2773
2017-08-08
N/A
N/A
Cross-site scripting (XSS) vulnerability in the Taxonomy Image module 5.x before 5.x-1.3 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2008-2772
2017-08-08
N/A
N/A
The Magic Tabs module 5.x before 5.x-1.1 for Drupal allows remote attackers to execute arbitrary PHP code via unspecified URL arguments, possibly related to a missing "whitelist of callbacks."
CVE-2008-2771
2017-08-08
N/A
N/A
The Node Hierarchy module 5.x before 5.x-1.1 and 6.x before 6.x-1.0 for Drupal does not properly implement access checks, which allows remote attackers with "access content" permissions to bypass restrictions and modify the node hierarchy via unspecified attack vectors.
CVE-2008-2770
2017-09-29
N/A
N/A
SQL injection vulnerability in index.php in MycroCMS 0.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the entry_id parameter.
CVE-2008-2769
2018-10-11
N/A
N/A
PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[smf_path] parameter.
CVE-2008-2768
Absolute Poll Manager Xe, Xigla
Absolute_banner_manager, Absolute_banner_manager.net, Absolute_content_rotator, Absolute_control_panel_xe, Absolute_faq_manager_.net, Absolute_form_processor.net, Absolute_form_processor_xe, Absolute_image_gallery_xe, Absolute_live_support_.net, Absolute_live_support_xe
2017-08-08
N/A
N/A
Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to inject arbitrary web script or HTML via unspecified vectors ("all fields").
CVE-2008-2767
Absolute Poll Manager Xe, Xigla
Absolute_banner_manager, Absolute_banner_manager.net, Absolute_content_rotator, Absolute_control_panel_xe, Absolute_faq_manager_.net, Absolute_form_processor.net, Absolute_form_processor_xe, Absolute_image_gallery_xe, Absolute_live_support_.net, Absolute_live_support_xe
2017-08-08
N/A
N/A
SQL injection vulnerability in search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to execute arbitrary SQL commands via the orderby parameter.
CVE-2008-2766
Absolute Image Gallery Xe, Xigla
Absolute_banner_manager, Absolute_banner_manager.net, Absolute_content_rotator, Absolute_control_panel_xe, Absolute_faq_manager_.net, Absolute_form_processor.net, Absolute_form_processor_xe, Absolute_image_gallery_xe, Absolute_live_support_.net, Absolute_live_support_xe
2017-08-08
N/A
N/A
Cross-site scripting (XSS) vulnerability in Xigla Absolute Image Gallery XE allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) admin/search.asp and (2) gallery.asp.
CVE-2008-2765
Absolute Image Gallery Xe, Xigla
Absolute_banner_manager, Absolute_banner_manager.net, Absolute_content_rotator, Absolute_control_panel_xe, Absolute_faq_manager_.net, Absolute_form_processor.net, Absolute_form_processor_xe, Absolute_image_gallery_xe, Absolute_live_support_.net, Absolute_live_support_xe
2017-08-08
N/A
N/A
SQL injection vulnerability in gallery.asp in Xigla Absolute Image Gallery XE allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewimage action.
CVE-2008-2764
Absolute Live Support Xe, Xigla
Absolute_banner_manager, Absolute_banner_manager.net, Absolute_content_rotator, Absolute_control_panel_xe, Absolute_faq_manager_.net, Absolute_form_processor.net, Absolute_form_processor_xe, Absolute_image_gallery_xe, Absolute_live_support_.net, Absolute_live_support_xe
2017-08-08
N/A
N/A
Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors ("all fields").
« Previous 1 … 447 448 449 450 451 … 11,258 Next »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE