268921
|
- |
|
john_andersson
|
zixforum
|
SQL injection vulnerability in ZixForum 1.12 allows remote attackers to execute arbitrary SQL commands via the H_ID parameter to (1) zixforum/forum.asp, as used in (2) Headforums.asp and (3) Subject.…
|
NVD-CWE-Other
|
CVE-2005-4334
|
2008-09-6 05:56 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268922
|
- |
|
blackboard
|
academic_suite
|
The login page in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to bypass authentication and gain privileg…
|
NVD-CWE-Other
|
CVE-2005-4337
|
2008-09-6 05:56 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268923
|
- |
|
blackboard
|
academic_suite
|
announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to gain administrator privileges by setti…
|
NVD-CWE-Other
|
CVE-2005-4338
|
2008-09-6 05:56 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268924
|
- |
|
blackboard
|
academic_suite
|
Cross-site scripting (XSS) vulnerability in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to inject arbitr…
|
NVD-CWE-Other
|
CVE-2005-4339
|
2008-09-6 05:56 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268925
|
- |
|
blackboard
|
academic_suite
|
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to list all available categories via a blank category_id par…
|
NVD-CWE-Other
|
CVE-2005-4341
|
2008-09-6 05:56 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268926
|
- |
|
icms_content_management_systems
|
icms
|
Cross-site scripting (XSS) vulnerability in admin/Default.asp in iCMS allows remote attackers to inject arbitrary web script or HTML via the LoginMSG parameter. NOTE: the provenance of this issue is…
|
NVD-CWE-Other
|
CVE-2005-4396
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268927
|
- |
|
icms_content_management_systems
|
icms
|
SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter.
|
NVD-CWE-Other
|
CVE-2005-4397
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268928
|
- |
|
media2_cms
|
media2_cms_shop
|
SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. NOTE: the provenance of this issue is unknown; th…
|
NVD-CWE-Other
|
CVE-2005-4404
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268929
|
- |
|
citrix
|
program_neighborhood_client
|
Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the…
|
NVD-CWE-Other
|
CVE-2005-4412
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268930
|
- |
|
ibm
|
websphere_application_server
|
Multiple cross-site scripting (XSS) vulnerabilities in sample scripts in IBM WebSphere Application Server 6 allow remote attackers to inject arbitrary web script or HTML via the (1) E-mail address fi…
|
NVD-CWE-Other
|
CVE-2005-4413
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|