268401
|
- |
|
efficientip
|
ipmanager
|
Cross-site scripting (XSS) vulnerability in index.php in Efficient IP iPmanager (IPm) 2.3 allows remote attackers to inject arbitrary web script or HTML via the errmsg parameter. NOTE: the provenanc…
|
NVD-CWE-Other
|
CVE-2006-5924
|
2008-09-6 06:13 |
2006-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268402
|
- |
|
phpjobscheduler
|
phpjobscheduler
|
PHP remote file inclusion vulnerability in firepjs.php in Phpjobscheduler 3.0 allows remote attackers to execute arbitrary PHP code via a URL in the installed_config_file parameter. NOTE: the proven…
|
NVD-CWE-Other
|
CVE-2006-5929
|
2008-09-6 06:13 |
2006-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268403
|
- |
|
aigaion
|
aigaion
|
Multiple PHP remote file inclusion vulnerabilities in Aigaion Web based bibliography management system 1.2.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code vi…
|
NVD-CWE-Other
|
CVE-2006-5931
|
2008-09-6 06:13 |
2006-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268404
|
- |
|
xlinesoft
|
phprunner
|
XLineSoft PHPRunner 3.1 stores the (1) database server name, (2) database names, (3) usernames, and (4) passwords in plaintext in %WINDIR%\PHPRunner.ini, which allows local users to obtain sensitive …
|
NVD-CWE-Other
|
CVE-2006-5956
|
2008-09-6 06:13 |
2006-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268405
|
- |
|
pegasus
|
mercury_mail_transport_system
|
Buffer overflow in Mercury Mail Transport System 4.01b for Windows has unknown impact and attack vectors, as originally reported in a GLEG VulnDisco pack. NOTE: the provenance of this information is…
|
NVD-CWE-Other
|
CVE-2006-5961
|
2008-09-6 06:13 |
2006-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268406
|
- |
|
netkit
|
netkit
|
ftpd in Linux Netkit (linux-ftpd) 0.17, and possibly other versions, does not check the return status of certain seteuid, setgid, and setuid calls, which might allow remote authenticated users to gai…
|
NVD-CWE-Other
|
CVE-2006-6008
|
2008-09-6 06:13 |
2006-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268407
|
- |
|
netbsd
|
netbsd
|
The NetBSD-current kernel before 20061028 does not properly perform bounds checking of an unspecified userspace parameter in the ptrace system call during a PT_DUMPCORE request, which allows local us…
|
NVD-CWE-Other
|
CVE-2006-6014
|
2008-09-6 06:13 |
2006-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268408
|
- |
|
netbsd
|
netbsd
|
This vulnerability is addressed in the following product update:
NetBSD, NetBSD, current 10/28/2006
|
NVD-CWE-Other
|
CVE-2006-6014
|
2008-09-6 06:13 |
2006-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268409
|
- |
|
wordpress
|
wordpress
|
wp-admin/user-edit.php in WordPress before 2.0.5 allows remote authenticated users to read the metadata of an arbitrary user via a modified user_id parameter.
|
NVD-CWE-Other
|
CVE-2006-6016
|
2008-09-6 06:13 |
2006-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268410
|
- |
|
wordpress
|
wordpress
|
WordPress before 2.0.5 does not properly store a profile containing a string representation of a serialized object, which allows remote authenticated users to cause a denial of service (application c…
|
NVD-CWE-Other
|
CVE-2006-6017
|
2008-09-6 06:13 |
2006-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|