|
268301
|
- |
|
apachetop
|
apachetop
|
apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug.
|
NVD-CWE-Other
|
CVE-2005-2660
|
2008-09-6 05:52 |
2005-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268302
|
- |
|
hauri
|
livecall
virobot_advanced_server
virobot_expert
virobot_linux_server
|
Directory traversal vulnerability in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall allows remote attackers to overwrite arbitrary files via "…
|
NVD-CWE-Other
|
CVE-2005-2670
|
2008-09-6 05:52 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268303
|
- |
|
woltlab
|
burning_board
|
SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated attackers to execute arbitrary SQL commands via the (1) x or (2) y parameters.
|
NVD-CWE-Other
|
CVE-2005-2673
|
2008-09-6 05:52 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268304
|
- |
|
coppermine
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data.
|
NVD-CWE-Other
|
CVE-2005-2676
|
2008-09-6 05:52 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268305
|
- |
|
acnews
|
acnews
|
ACNews stores the database in a file under the web document root with a db.inc extension and insufficient access control, which allows remote attackers to obtain sensitive information such as the ful…
|
NVD-CWE-Other
|
CVE-2005-2677
|
2008-09-6 05:52 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268306
|
- |
|
sysinternals
|
process_explorer
|
Buffer overflow in Sysinternals Process Explorer 9.23, and other versions before 9.25, allows local users to execute arbitrary code via a long CompanyName field in the VersionInfo information in a ru…
|
NVD-CWE-Other
|
CVE-2005-2679
|
2008-09-6 05:52 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268307
|
- |
|
-
|
-
|
nquser.php in Virtual Edge Netquery 3.11 allows remote attackers to execute arbitrary commands via shell metacharacters in the host parameter to a dig query.
|
NVD-CWE-Other
|
CVE-2005-2684
|
2008-09-6 05:52 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268308
|
- |
|
savewebportal
|
savewebportal
|
SaveWebPortal 3.4 allows remote attackers to execute arbitrary PHP code via a direct request to admin/PhpMyExplorer/editerfichier.php, then editing the desired file to contain the PHP code, as demons…
|
NVD-CWE-Other
|
CVE-2005-2685
|
2008-09-6 05:52 |
2005-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268309
|
- |
|
savewebportal
|
savewebportal
|
Directory traversal vulnerability in SaveWebPortal 3.4 allows remote attackers to include arbitrary files and execute arbitrary local PHP programs via ".." sequences in the (1) SITE_Path parameter to…
|
NVD-CWE-Other
|
CVE-2005-2686
|
2008-09-6 05:52 |
2005-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268310
|
- |
|
savewebportal
|
savewebportal
|
Multiple cross-site scripting (XSS) vulnerabilities in SaveWebPortal 3.4 allow remote attackers to inject arbitrary web script or HTML via a large number of parameters to (1) footer.php, (2) header.p…
|
NVD-CWE-Other
|
CVE-2005-2688
|
2008-09-6 05:52 |
2005-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
