270721
|
- |
|
aspdotnetstorefront
|
aspdotnetstorefront
|
Unrestricted file upload vulnerability in AspDotNetStorefront 3.3 allows remote authenticated administrators to upload arbitrary files with executable extensions via admin/images.aspx.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2004-2700
|
2008-09-5 13:00 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270722
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Unspecified vulnerability in Gyach Enhanced (Gyach-E) before 1.0.4 allows remote attackers to cause a denial of service (crash) via conference packets with error messages.
|
NVD-CWE-noinfo CWE-20
Improper Input Validation
|
CVE-2004-2706
|
2008-09-5 13:00 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270723
|
- |
|
ibm
|
aix
|
Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-1999-1589
|
2008-09-5 13:00 |
1999-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270724
|
- |
|
coxco_support
|
a-cart metacart midicart_asp midicart_asp_maxi midicart_asp_plus salescart-pro salescart-std
|
MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.
|
CWE-200
Information Exposure
|
CVE-2002-1432
|
2008-09-5 13:00 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270725
|
- |
|
ikonboard
|
ikonboard
|
Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via a private message with a javascript: URL in the IMG tag, in which the UR…
|
CWE-79
Cross-site Scripting
|
CVE-2002-2230
|
2008-09-5 13:00 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270726
|
- |
|
-
|
-
|
The echo service is running.
|
NVD-CWE-Other
|
CVE-1999-0635
|
2007-07-13 13:00 |
1999-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270727
|
- |
|
-
|
-
|
This Common Vulnerabilities and Exposures (CVE) entry is a configuration issue and not a software flaw. As such, it doesn’t fit in the CVE software flaw list. The Common Vulnerability Scoring System …
|
NVD-CWE-Other
|
CVE-1999-0635
|
2007-07-13 13:00 |
1999-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270728
|
- |
|
-
|
-
|
The Echo Service is an unsecured and obsolete protocol and it should be disabled. Historically it has been used to perform denial of service attacks.
|
NVD-CWE-Other
|
CVE-1999-0635
|
2007-07-13 13:00 |
1999-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270729
|
- |
|
-
|
-
|
Multiple vulnerabilities in multiple vendor implementations of the X.400 protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an X.400 message containi…
|
NVD-CWE-Other
|
CVE-2003-0565
|
2005-10-20 13:00 |
2003-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270730
|
- |
|
-
|
-
|
Two Sun security certificates have been compromised, which could allow attackers to insert malicious code such as applets and make it appear that it is signed by Sun.
|
NVD-CWE-Other
|
CVE-2000-0889
|
2005-10-20 13:00 |
2001-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|