265431
|
- |
|
nullsoft
|
shoutcast_server
|
Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.6 filters directory traversal sequences before decoding, which allows remote attackers to read arbitrary files via encoded dot d…
|
NVD-CWE-Other
|
CVE-2006-3534
|
2011-03-8 11:38 |
2006-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265432
|
- |
|
nullsoft
|
shoutcast_server
|
This vulnerability is addressed in the following product releases:
Nullsoft, SHOUTcast DSP, 1.9.6
Nullsoft, SHOUTcast DSP, 1.9.7
|
NVD-CWE-Other
|
CVE-2006-3534
|
2011-03-8 11:38 |
2006-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265433
|
- |
|
ipswitch
|
ipswitch_collaboration_suite ipswitch_secure_server
|
Premium Anti-Spam in Ipswitch IMail Secure Server 2006 and Collaboration Suite 2006 Premium, when using a certain .dat file in the StarEngine /data directory from 20060630 or earlier, does not proper…
|
NVD-CWE-Other
|
CVE-2006-3552
|
2011-03-8 11:38 |
2006-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265434
|
- |
|
logicalware
|
mailmanager
|
Logicalware MailManager before 2.0.10 does not remove 0xc8 0x27 (0xc8 followed by a single-quote character) from the data stream to the server, which allows remote attackers to modify data and gain a…
|
NVD-CWE-Other
|
CVE-2006-2824
|
2011-03-8 11:37 |
2006-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265435
|
- |
|
techno_dreams
|
techno_dreams_guest_book
|
Cross-site scripting (XSS) vulnerability in Techno Dreams Guest Book allows remote attackers to inject arbitrary web script or HTML via certain comment fields in the "Sign Our GuestBook" page, probab…
|
NVD-CWE-Other
|
CVE-2006-2837
|
2011-03-8 11:37 |
2006-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265436
|
- |
|
particle_soft
|
particle_gallery
|
SQL injection vulnerability in viewimage.php in Particle Gallery 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the imageid parameter.
|
NVD-CWE-Other
|
CVE-2006-2862
|
2011-03-8 11:37 |
2006-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265437
|
- |
|
deltascripts
|
php_pro_publish
|
Cross-site scripting (XSS) vulnerability in cat.php in PHP Pro Publish 2.0 allows remote attackers to inject arbitrary web script or HTML via the catname parameter. NOTE: the provenance of this info…
|
NVD-CWE-Other
|
CVE-2006-2876
|
2011-03-8 11:37 |
2006-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265438
|
- |
|
qbik
|
wingate
|
Directory traversal vulnerability in the IMAP server in WinGate 6.1.2.1094 and 6.1.3.1096, and possibly other versions before 6.1.4 Build 1099, allows remote authenticated users to read email of othe…
|
NVD-CWE-Other
|
CVE-2006-2917
|
2011-03-8 11:37 |
2006-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265439
|
- |
|
dmx_forum
|
dmx_forum
|
Dmx Forum 2.1a stores _includes/bd.inc under the web root with insufficient access control, which allows remote attackers to obtain database username and password information.
|
NVD-CWE-Other
|
CVE-2006-2946
|
2011-03-8 11:37 |
2006-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265440
|
- |
|
skoom
|
i.list
|
Multiple cross-site scripting (XSS) vulnerabilities in i.List 1.5 beta and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) searchword parameter to search.php or (2) …
|
NVD-CWE-Other
|
CVE-2006-2956
|
2011-03-8 11:37 |
2006-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|