HP Network Node Manager remote console weak files permissions

Weak permissions for C:Program FilesHP OpenView allows executable files and system service file spoofing...

CVE-2008-6978

Unrestricted file upload vulnerability in Full Revolution aspWebAlbum 3.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in pics/, related to the uploadmedia action in album.asp...

EUVD-2008-6937

Unrestricted file upload vulnerability in Full Revolution aspWebAlbum 3.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in pics/, related to the uploadmedia action in album.asp...

CVE-2008-6996

Removed by vendor...

CVE-2008-6996

CVE-2008-6996 affects Google Chrome BETA 0.2.149.27. The vulnerability is that Chrome does not prompt the user before saving an executable file, potentially enabling a remote attacker or malware to cause disk-based DoS or exploit other vulnerabilities via a URL referencing an executable (possibly...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

CVE-2008-6944

Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System aka Real Estate Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in...

CVE-2008-6943

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

CVE-2008-6942

CVE-2008-6942 affects the ScriptsFeed Realtor Classifieds System (Real Estate Classifieds). The vulnerability is an unrestricted file upload in the user profile logo feature, where an authenticated user can upload a file with an executable extension to the re_images/ path and access it via a dire...

CVE-2008-6929

Unrestricted file upload vulnerability in PHPStore Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in cars/carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in PHPStore Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in cars/carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in realty/reimages/...

CVE-2008-6938

Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service crash or hang and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an...

CVE-2008-6926

Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpathshow parameter in a GoAhead action. NOTE: this issue only...

CVE-2008-6921

Unrestricted file upload vulnerability in index.php in phpAdBoard 1.8 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photoes/...

MediaCoder 0.7.1.4488 (.lst & .m3u) Universal Buffer Overflow (SEH)

Exploit for unknown platform in category local exploits =================================================================== MediaCoder 0.7.1.4488 .lst & .m3u Universal Buffer Overflow SEH =================================================================== !/usr/bin/perl + software : MediaCoder...

Unrestricted file upload

Unrestricted file upload vulnerability in "Add Pen/Author Name" feature in addpen.php in AvailScript Article Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photos/...

EPSON Status Monitor 3 local privilege escalation vulnerability

------- EPSON Status Monitor 3 local privilege escalation vulnerability -------- by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ -------------------------------------------------------------------------------- After that pyrokinesis found:...