265181
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 5.1.1.9 and earlier allows remote attackers to obtain JSP source code and other sensitive information via "a specific JSP URL."
|
NVD-CWE-Other
|
CVE-2006-7166
|
2011-03-8 11:48 |
2007-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265182
|
- |
|
hosting_controller
|
hosting_controller
|
Directory traversal vulnerability in FolderManager/FolderManager.aspx in Hosting Controller 7c allows remote authenticated users to read and modify arbitrary files, and list arbitrary directories via…
|
NVD-CWE-Other
|
CVE-2006-6814
|
2011-03-8 11:47 |
2006-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265183
|
- |
|
mxmania
|
calendar_mx_basic
|
Calendar MX BASIC 1.0.2 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for cale…
|
NVD-CWE-Other
|
CVE-2006-6825
|
2011-03-8 11:47 |
2006-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265184
|
- |
|
efkan_forum
|
efkan_forum
|
Multiple SQL injection vulnerabilities in Efkan Forum 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the grup parameter in admin.asp, or the id parameter in (2) defa…
|
NVD-CWE-Other
|
CVE-2006-6828
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265185
|
- |
|
efkan_forum
|
efkan_forum
|
Efkan Forum 1.0 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum.mdb. …
|
NVD-CWE-Other
|
CVE-2006-6829
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265186
|
- |
|
joomla
|
joomla
|
Cross-site scripting (XSS) vulnerability in Joomla! before 1.0.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to poll.php or the module ti…
|
CWE-79
Cross-site Scripting
|
CVE-2006-6832
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265187
|
- |
|
joomla
|
joomla
|
com_categories in Joomla! before 1.0.12 does not validate input, which has unknown impact and remote attack vectors.
|
NVD-CWE-Other
|
CVE-2006-6833
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265188
|
- |
|
joomla
|
joomla
|
Multiple unspecified vulnerabilities in Joomla! before 1.0.12 have unknown impact and attack vectors related to (1) "unneeded legacy functions" and (2) "Several low level security fixes."
|
NVD-CWE-Other
|
CVE-2006-6834
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265189
|
- |
|
tdiary
|
tdiary
|
Eval injection vulnerability in tDiary 2.0.3 and 2.1.4.200 61127 allows remote authenticated users to execute arbitrary Ruby code via unspecified vectors, possibly related to incorrect input validati…
|
CWE-20
Improper Input Validation
|
CVE-2006-6852
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265190
|
- |
|
miredo
|
miredo
|
Miredo 0.9.8 through 1.0.5 does not properly authenticate a Teredo bubble during UDP hole punching with HMAC-MD5-64 hashing, which allows remote attackers to impersonate an arbitrary Teredo client.
|
NVD-CWE-Other
|
CVE-2006-6858
|
2011-03-8 11:47 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|