|
271221
|
- |
|
ibm
|
aix
|
Untrusted search path vulnerability in update_flash for IBM AIX 5.1, 5.2 and 5.3 allows local users to execute arbitrary commands via unknown vectors involving lsmcode and possibly other commands.
|
NVD-CWE-Other
|
CVE-2006-2647
|
2011-03-8 11:36 |
2006-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271222
|
- |
|
mono
suse
|
xsp
suse_open_enterprise_server
suse_linux
|
Directory traversal vulnerability in the xsp component in mod_mono in Mono/C# web server, as used in SUSE Open-Enterprise-Server 1 and SUSE Linux 9.2 through 10.0, allows remote attackers to read arb…
|
NVD-CWE-Other
|
CVE-2006-2658
|
2011-03-8 11:36 |
2006-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271223
|
- |
|
albinator
|
albinator
|
Multiple PHP remote file inclusion vulnerabilities in (1) eday.php, (2) eshow.php, or (3) forgot.php in albinator 2.0.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in t…
|
NVD-CWE-Other
|
CVE-2006-2182
|
2011-03-8 11:35 |
2006-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271224
|
- |
|
chadha_software_technologies
|
phpkb_knowledge_base
|
Cross-site scripting (XSS) vulnerability in search.php in PHPKB Knowledge Base allows remote attackers to inject arbitrary web script or HTML via the searchkeyword parameter. NOTE: the issue was ori…
|
NVD-CWE-Other
|
CVE-2006-2184
|
2011-03-8 11:35 |
2006-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271225
|
- |
|
timobraun
|
dynamic_galerie
|
Cross-site scripting (XSS) vulnerability in Dynamic Galerie 1.0 allows remote attackers to inject arbitrary web script or HTML via the pfad parameter in (1) index.php and (2) galerie.php. NOTE: this…
|
NVD-CWE-Other
|
CVE-2006-2294
|
2011-03-8 11:35 |
2006-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271226
|
- |
|
new_atlanta_communications
|
bluedragon_server
bluedragon_server_jx
|
BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to cause a denial of service (hang) via a request for a .cfm file whose name contains an MS-DOS device name such as (1) c…
|
NVD-CWE-Other
|
CVE-2006-2310
|
2011-03-8 11:35 |
2006-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271227
|
- |
|
new_atlanta_communications
|
bluedragon_server
bluedragon_server_jx
|
This vulnerability is addressed in the following product release:
New Atlanta Communications, BlueDragon Server, 6.2.1.309
|
NVD-CWE-Other
|
CVE-2006-2310
|
2011-03-8 11:35 |
2006-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271228
|
- |
|
new_atlanta_communications
|
bluedragon_server
bluedragon_server_jx
|
Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to inject arbitrary web script or HTML via the filename in a request to a (1)…
|
NVD-CWE-Other
|
CVE-2006-2311
|
2011-03-8 11:35 |
2006-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271229
|
- |
|
updi_network_enterprise
|
at1_event_publisher
|
Cross-site scripting (XSS) vulnerability in tablepublisher.cgi in UPDI Network Enterprise @1 Table Publisher 2006-03-23 allows remote attackers to inject arbitrary web script or HTML via the Title of…
|
NVD-CWE-Other
|
CVE-2006-1795
|
2011-03-8 11:34 |
2006-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271230
|
- |
|
digium
|
asterisk
|
Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but trigg…
|
NVD-CWE-Other
|
CVE-2006-1827
|
2011-03-8 11:34 |
2006-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
