270661
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x before 1.4.6 and 1.5 before 1.5beta3 allows remote attackers to inject arbitrary web script or HTML via a parameter in the page move…
|
NVD-CWE-Other
|
CVE-2005-2215
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270662
|
- |
|
photogal
|
photogal_photo_gallery
|
PHP remote file inclusion vulnerability in gals.php in PhotoGal Photo Gallery 1.5 and earlier allows remote attackers to execute arbitrary code via the news_file parameter.
|
NVD-CWE-Other
|
CVE-2005-2216
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270663
|
- |
|
craig_dansie
|
dansie_shopping_cart
|
Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attackers to obtain sensitive information such as program variables.
|
NVD-CWE-Other
|
CVE-2005-2217
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270664
|
- |
|
hosting_controller
|
hosting_controller
|
Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to perform unauthorized actions, such as modifying the credit limit, via a direct request to AccountActions.asp and modifying the C…
|
NVD-CWE-Other
|
CVE-2005-2219
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270665
|
- |
|
mailenable
|
mailenable_professional
|
Unknown vulnerability in the HTTPMail service in MailEnable Professional before 1.6 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2005-2222
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270666
|
- |
|
mailenable
|
mailenable_professional mailenable_standard
|
Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before 1.6 allows remote attackers to cause a denial of service (crash) during authentication.
|
NVD-CWE-Other
|
CVE-2005-2223
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270667
|
- |
|
microsoft
|
outlook_express
|
Microsoft Outlook Express 6.0 leaks the default news server account when a user responds to a "watched" conversation thread, which could allow remote attackers to obtain sensitive information.
|
NVD-CWE-Other
|
CVE-2005-2226
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270668
|
- |
|
bdc_enterprises
|
web_wiz_forums
|
Web Wiz Forums 7.9 and 8.0 allows remote attackers to view message titles of a hidden forum.
|
NVD-CWE-Other
|
CVE-2005-2228
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270669
|
- |
|
elmo
|
elmo
|
Electronic Mail Operator (elmo) 1.3.2-r1 and earlier creates the elmostats temporary file insecurely, which allows local users to overwrite arbitrary files.
|
NVD-CWE-Other
|
CVE-2005-2230
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270670
|
- |
|
high_availability_linux_project
|
heartbeat
|
High Availability Linux Project Heartbeat 1.2.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2005-2231
|
2008-09-6 05:51 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|