270651
|
- |
|
xerox
|
workcentre_2128 workcentre_2636 workcentre_3545
|
Unknown vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 through 0.001.04.504, allow attackers to cause a denial of service or acc…
|
NVD-CWE-Other
|
CVE-2005-2201
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270652
|
- |
|
xerox
|
workcentre_2128 workcentre_2636 workcentre_3545
|
Cross-site scripting (XSS) vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 through 0.001.04.504, allows remote attackers to injec…
|
NVD-CWE-Other
|
CVE-2005-2202
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270653
|
- |
|
phpwishlist
|
phpwishlist
|
login.php in phpWishlist before 0.1.15 allows remote attackers to bypass authentication via a direct request to admin.php.
|
NVD-CWE-Other
|
CVE-2005-2203
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270654
|
- |
|
pngren
|
pngren
|
The ReadLog function in kaiseki.cgi in pngren allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
|
NVD-CWE-Other
|
CVE-2005-2205
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270655
|
- |
|
elemental_software
|
cartwiz
|
Multiple SQL injection vulnerabilities in CartWIZ allow remote attackers to modify SQL statements via the (1) idProduct parameter to tellAFriend.asp, (2) sortType parameter to viewSupportTickets.asp,…
|
NVD-CWE-Other
|
CVE-2005-2206
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270656
|
- |
|
elemental_software
|
cartwiz
|
Cross-site scripting (XSS) vulnerability in store/login.asp in CartWIZ allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
NVD-CWE-Other
|
CVE-2005-2207
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270657
|
- |
|
privashare
|
privashare
|
PrivaShare 1.1b allows remote attackers to cause a denial of service (crash) via a malformed message.
|
NVD-CWE-Other
|
CVE-2005-2208
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270658
|
- |
|
sukria
|
backup_manager
|
Backup Manager 0.5.8a creates temporary files insecurely, which allows local users to conduct unauthorized file operations when a user is burning a CDR.
|
NVD-CWE-Other
|
CVE-2005-2211
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270659
|
- |
|
sukria
|
backup_manager
|
Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository.
|
NVD-CWE-Other
|
CVE-2005-2212
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270660
|
- |
|
debian
|
apt-setup
|
apt-setup in Debian GNU/Linux installs the apt.conf file with insecure permissions, which allows local users to obtain sensitive information such as passwords.
|
NVD-CWE-Other
|
CVE-2005-2214
|
2008-09-6 05:51 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|