CVE-2008-7021

Unrestricted file upload vulnerability in editlogo.php in AvailScript Jobs Portal Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as an image or logo, then accessing it via a direct request to the file in an unspecified directory...

CVE-2008-7026

Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct request to the file in 1 student/avatars/ or 2...

CVE-2008-6978

Unrestricted file upload vulnerability in Full Revolution aspWebAlbum 3.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in pics/, related to the uploadmedia action in album.asp...

CVE-2008-6996

Google Chrome BETA 0.2.149.27 does not prompt the user before saving an executable file, which makes it easier for remote attackers or malware to cause a denial of service disk consumption or exploit other vulnerabilities via a URL that references an executable file, possibly related to the "ask...

Unrestricted file upload

Unrestricted file upload vulnerability in Full Revolution aspWebAlbum 3.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in pics/, related to the uploadmedia action in album.asp...

Code injection

Google Chrome BETA 0.2.149.27 does not prompt the user before saving an executable file, which makes it easier for remote attackers or malware to cause a denial of service disk consumption or exploit other vulnerabilities via a URL that references an executable file, possibly related to the "ask...

HP Network Node Manager remote console weak files permissions

Weak permissions for C:Program FilesHP OpenView allows executable files and system service file spoofing...

CVE-2008-6978

Unrestricted file upload vulnerability in Full Revolution aspWebAlbum 3.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in pics/, related to the uploadmedia action in album.asp...

EUVD-2008-6937

Unrestricted file upload vulnerability in Full Revolution aspWebAlbum 3.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in pics/, related to the uploadmedia action in album.asp...

CVE-2008-6996

Removed by vendor...

CVE-2008-6996

CVE-2008-6996 affects Google Chrome BETA 0.2.149.27. The vulnerability is that Chrome does not prompt the user before saving an executable file, potentially enabling a remote attacker or malware to cause disk-based DoS or exploit other vulnerabilities via a URL referencing an executable (possibly...

CVE-2008-6944

Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

CVE-2008-6943

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System aka Real Estate Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in carsimages/...

CVE-2008-6942

CVE-2008-6942 affects the ScriptsFeed Realtor Classifieds System (Real Estate Classifieds). The vulnerability is an unrestricted file upload in the user profile logo feature, where an authenticated user can upload a file with an executable extension to the re_images/ path and access it via a dire...

CVE-2008-6929

Unrestricted file upload vulnerability in PHPStore Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in cars/carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in PHPStore Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in cars/carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in realty/reimages/...