265381
|
- |
|
wim_fleischhauer
|
docpile_we
|
Multiple PHP remote file inclusion vulnerabilities in Wim Fleischhauer docpile: wim's edition (docpile:we) 0.2.2 allow remote attackers to execute arbitrary PHP code via a URL in the INIT_PATH parame…
|
NVD-CWE-Other
|
CVE-2006-4076
|
2011-03-8 11:40 |
2006-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265382
|
- |
|
wim_fleischhauer
|
docpile_we
|
Successful exploitation requires that "register_globals" is enabled.
|
NVD-CWE-Other
|
CVE-2006-4076
|
2011-03-8 11:40 |
2006-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265383
|
- |
|
ozjournals
|
ozjournals
|
Cross-site scripting (XSS) vulnerability in index.php in Elaine Aquino Online Zone Journals (OZJournals) 1.5 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.…
|
NVD-CWE-Other
|
CVE-2006-4086
|
2011-03-8 11:40 |
2006-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265384
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.1.0.1 have unspecified impact and attack vectors involving (1) "SOAP requests and responses", (2) mbean, (3) ThreadId…
|
CWE-200 CWE-264
Information Exposure Permissions, Privileges, and Access Controls
|
CVE-2006-4136
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265385
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server before 6.1.0.1 allows attackers to obtain sensitive information via unspecified vectors related to (1) the log file, (2) "script generated syntax on wsadmin command l…
|
NVD-CWE-Other
|
CVE-2006-4137
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265386
|
- |
|
invision_power_services
|
invision_power_board
|
Unspecified vulnerability in func_topic_threaded.php (aka threaded view mode) in Invision Power Board (IPB) before 2.1.7 21013.60810.s allows remote attackers to "access posts outside the topic."
|
NVD-CWE-Other
|
CVE-2006-4155
|
2011-03-8 11:40 |
2006-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265387
|
- |
|
novell
|
groupwise groupwise_webaccess
|
Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess before 7 Support Pack 3 Public Beta allow remote attackers to inject arbitrary web script or HTML via the (…
|
CWE-79
Cross-site Scripting
|
CVE-2006-4220
|
2011-03-8 11:40 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265388
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.0.2.13 have unspecified vectors and impact, including (1) an "authority problem" in ThreadIdentitySupport as identifi…
|
NVD-CWE-Other
|
CVE-2006-4222
|
2011-03-8 11:40 |
2006-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265389
|
- |
|
twiki
|
twiki
|
Directory traversal vulnerability in viewfile in TWiki 4.0.0 through 4.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
|
NVD-CWE-Other
|
CVE-2006-4294
|
2011-03-8 11:40 |
2006-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265390
|
- |
|
cgi-rescue
|
mail_f_w_system
|
CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) before 8.3 allows remote attackers to spoof e-mails and inject e-mail headers via unspecified vectors in (1) mail.cgi and (2) query.…
|
NVD-CWE-Other
|
CVE-2006-4344
|
2011-03-8 11:40 |
2006-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|