268871
|
- |
|
gizzar
|
gizzar
|
PHP remote file inclusion vulnerability in guest.php in Gizzar 03162002 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter. NOTE: the provenance of…
|
NVD-CWE-Other
|
CVE-2006-6527
|
2011-03-8 11:46 |
2006-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268872
|
- |
|
drupal
|
chatroom_module
|
The Chatroom Module before 4.7.x.-1.0 for Drupal broadcasts Chatroom visitors' session IDs to all participants, which allows remote attackers to hijack sessions and gain privileges.
|
NVD-CWE-Other
|
CVE-2006-6528
|
2011-03-8 11:46 |
2006-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268873
|
- |
|
cm68_news
|
cm68_news
|
Cross-site scripting (XSS) vulnerability in CM68 News allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: The provenance of this information is unknown; the…
|
NVD-CWE-Other
|
CVE-2006-6544
|
2011-03-8 11:46 |
2006-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268874
|
- |
|
scriptmate
|
user_manager
|
Multiple SQL injection vulnerabilities in ScriptMate User Manager 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via "Manage Resources" and possibly other unspecified compon…
|
NVD-CWE-Other
|
CVE-2006-6595
|
2011-03-8 11:46 |
2006-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268875
|
- |
|
yahoo
|
messenger
|
Buffer overflow in the YMMAPI.YMailAttach ActiveX control (ymmapi.dll) before 2005.1.1.4 in Yahoo! Messenger allows remote attackers to execute arbitrary code via a crafted HTML document. NOTE: some…
|
NVD-CWE-Other
|
CVE-2006-6603
|
2011-03-8 11:46 |
2006-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268876
|
- |
|
webwork
|
program_generation_language
|
lib/WeBWorK/PG/Translator.pm in WeBWorK Program Generation (PG) Language before 2.3.1 uses an insufficiently restrictive regular expression to determine valid macro filenames, which allows attackers …
|
NVD-CWE-Other
|
CVE-2006-6629
|
2011-03-8 11:46 |
2006-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268877
|
- |
|
webwork
|
program_generation_language
|
This vulnerability is addressed in the following product release:
WeBWorK, Program Generation Language, 2.3.1
|
NVD-CWE-Other
|
CVE-2006-6629
|
2011-03-8 11:46 |
2006-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268878
|
- |
|
drupal
|
drupal_project drupal_project_issue_tracking
|
Multiple cross-site scripting (XSS) vulnerabilities in Drupal (1) Project Issue Tracking 4.7.x-1.0 and 4.7.x-2.0, and (2) Project 4.6.x-1.0, 4.7.x-1.0, and 4.7.x-2.0 allow remote attackers to inject …
|
NVD-CWE-Other
|
CVE-2006-6646
|
2011-03-8 11:46 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268879
|
- |
|
drupal
|
drupal_mysite
|
Cross-site scripting (XSS) vulnerability in the MySite 4.7.x before 4.7.x-3.3 and 5.x before 5.x-1.3 module for Drupal allows remote attackers to inject arbitrary web script or HTML via the Title fie…
|
NVD-CWE-Other
|
CVE-2006-6647
|
2011-03-8 11:46 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268880
|
- |
|
intel
|
2200bg_proset_wireless
|
Race condition in W29N51.SYS in the Intel 2200BG wireless driver 9.0.3.9 allows remote attackers to cause memory corruption and execute arbitrary code via a series of crafted beacon frames. NOTE: so…
|
NVD-CWE-Other
|
CVE-2006-6651
|
2011-03-8 11:46 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|