|
263871
|
- |
|
horde
|
horde_application_framework
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demons…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4190
|
2011-09-13 13:00 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263872
|
- |
|
iatek
|
projectapp
|
Multiple cross-site scripting (XSS) vulnerabilities in ProjectApp 3.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the keywords parameter to (1) forums.asp, (2) searc…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4485
|
2011-09-13 13:00 |
2005-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263873
|
- |
|
sitekit_solutions
|
sitekit_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Sitekit CMS 6.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) query string, (2) textonly, (3) locID, and…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4491
|
2011-09-13 13:00 |
2005-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263874
|
- |
|
iisworks
|
aspknowledgebase
|
Multiple cross-site scripting (XSS) vulnerabilities in ASP-Programmers.com ASPKnowledgebase allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors in the administrat…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4658
|
2011-09-13 13:00 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263875
|
- |
|
oneplug_solutions
|
oneplug_cms
|
Multiple SQL injection vulnerabilities in OnePlug Solutions OnePlug CMS allow remote attackers to execute arbitrary SQL commands via the (1) Press_Release_ID parameter in press/details.asp, (2) Servi…
|
CWE-89
SQL Injection
|
CVE-2006-0115
|
2011-09-8 13:00 |
2006-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263876
|
- |
|
runcms
|
runcms
|
Multiple PHP remote file include vulnerabilities in RunCMS 1.2 and earlier, with register_globals and allow_url_fopen enabled, allow remote attackers to execute arbitrary code via the bbPath[path] pa…
|
CWE-94
Code Injection
|
CVE-2006-0659
|
2011-09-8 13:00 |
2006-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263877
|
- |
|
runcms
|
runcms
|
Successful exploitation requires that both "register_globals" and "allow_url_fopen" are enabled.
|
CWE-94
Code Injection
|
CVE-2006-0659
|
2011-09-8 13:00 |
2006-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263878
|
- |
|
joomla
|
joomla
|
Multiple SQL injection vulnerabilities in the Admin functionality in Joomla! 1.0.7 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via unknown attack vectors.
|
CWE-89
SQL Injection
|
CVE-2006-1049
|
2011-09-8 13:00 |
2006-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263879
|
- |
|
castor
|
castor
|
Multiple PHP remote file inclusion vulnerabilities in 2le.net Castor PHP Web Builder 1.1.1 allow remote attackers to execute arbitrary PHP code via the rootpath parameter in (1) lib/code.php, (2) lib…
|
CWE-94
Code Injection
|
CVE-2006-5481
|
2011-09-8 13:00 |
2006-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263880
|
- |
|
paristemi
|
paristemi
|
Multiple PHP remote file inclusion vulnerabilities in Paristemi 0.8.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the SERVER_DIRECTORY parameter to unspecified scrip…
|
CWE-94
Code Injection
|
CVE-2006-6689
|
2011-09-8 13:00 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
