|
270671
|
- |
|
virtual_hosting_control_system
|
virtual_hosting_control_system
|
Multiple SQL injection vulnerabilities in VHCS 2.4 and earlier allow remote attackers to execute arbitrary SQL commands via certain inputs from HTTP POST queries.
|
NVD-CWE-Other
|
CVE-2005-1128
|
2008-09-6 05:48 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270672
|
- |
|
symantec_veritas
|
i3_focalpoint_server
|
Unknown vulnerability in Veritas i3 Focalpoint Server 7.1 and earlier has unknown attack vectors and unknown but "critical" impact.
|
NVD-CWE-Other
|
CVE-2005-1131
|
2008-09-6 05:48 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270673
|
- |
|
kerio
|
kerio_mailserver
|
Unknown vulnerability in WebMail in Kerio MailServer before 6.0.9 allows remote attackers to cause a denial of service (CPU consumption) via certain e-mail messages.
|
NVD-CWE-Other
|
CVE-2005-1138
|
2008-09-6 05:48 |
2005-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270674
|
- |
|
mywebland
|
mybloggie
|
Cross-site scripting (XSS) vulnerability in myBloggie 2.1.1 allows remote attackers to inject arbitrary web script or HTML via the comments.
|
NVD-CWE-Other
|
CVE-2005-1140
|
2008-09-6 05:48 |
2005-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270675
|
- |
|
easyphpcalendar
|
easyphpcalendar
|
Cross-site scripting (XSS) vulnerability in index.php in EasyPHPCalendar before 6.2.8 allows remote attackers to inject arbitrary web script or HTML via the yr parameter.
|
NVD-CWE-Other
|
CVE-2005-1143
|
2008-09-6 05:48 |
2005-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270676
|
- |
|
easyphpcalendar
|
easyphpcalendar
|
popup.php in EasyPHPCalendar before 6.2.8 allows remote attackers to obtain sensitive information via an invalid ev parameter, which reveals the full pathname of the web server in a PHP error message.
|
NVD-CWE-Other
|
CVE-2005-1144
|
2008-09-6 05:48 |
2005-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270677
|
- |
|
easyphpcalendar
|
easyphpcalendar
|
Version 6.2.8 and above are fixed.
|
NVD-CWE-Other
|
CVE-2005-1144
|
2008-09-6 05:48 |
2005-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270678
|
- |
|
-
|
-
|
SQL injection vulnerability in admin/login.asp in aspclick.it ACNews 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameters.
|
NVD-CWE-Other
|
CVE-2005-1149
|
2008-09-6 05:48 |
2005-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270679
|
- |
|
sun
|
java_system_web_server
|
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and earlier, when running on Windows systems, allows attackers to cause a denial of service (hang).
|
NVD-CWE-Other
|
CVE-2005-1150
|
2008-09-6 05:48 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270680
|
- |
|
debian
|
qpopper
|
qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root.
|
NVD-CWE-Other
|
CVE-2005-1151
|
2008-09-6 05:48 |
2005-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
