265541
|
- |
|
paypal
|
php_toolkit
|
Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50, and possibly earlier versions, allows remote attackers to enter false payment entries into the log file via HTTP POST …
|
NVD-CWE-Other
|
CVE-2006-0201
|
2011-03-8 11:29 |
2006-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265542
|
- |
|
paypal
|
php_toolkit
|
Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50 and possibly earlier has (1) world-readable permissions for ipn/logs/ipn_success.txt, which allows local users to view …
|
NVD-CWE-Other
|
CVE-2006-0202
|
2011-03-8 11:29 |
2006-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265543
|
- |
|
pdfdirectory
|
pdfdirectory
|
Multiple SQL injection vulnerabilities in PDFdirectory before 1.0 allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors involving (1) util.php, (2) userpref.php, (…
|
NVD-CWE-Other
|
CVE-2006-0313
|
2011-03-8 11:29 |
2006-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265544
|
- |
|
pdfdirectory
|
pdfdirectory
|
PDFdirectory before 1.0 stores sensitive data in plaintext, which allows remote attackers to obtain arbitrary users' passwords by direct queries to the database, possibly via one of the SQL injection…
|
NVD-CWE-Other
|
CVE-2006-0314
|
2011-03-8 11:29 |
2006-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265545
|
- |
|
sun
|
java_system_web_proxy_server
|
Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and earlier allow remote attackers to cause a denial of service (unresponsive service) via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-4806
|
2011-03-8 11:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265546
|
- |
|
hp
|
http_server
|
Buffer overflow in the HP HTTP Server 5.0 through 5.95 of the HP Web-enabled Management Software allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-4823
|
2011-03-8 11:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265547
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.0 before 20050201, when serving pages in an Application WAR or an Extended Document Root, allows remote attackers to obtain the JSP source code and other sens…
|
NVD-CWE-Other
|
CVE-2005-4833
|
2011-03-8 11:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265548
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 5.0.2.5 through 5.1.1.3 allows remote attackers to obtain JSP source code and other sensitive information, related to incorrect request processing by the web co…
|
NVD-CWE-Other
|
CVE-2005-4834
|
2011-03-8 11:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265549
|
- |
|
hitachi
|
groupmax_mail_smtp
|
Hitachi Groupmax Mail SMTP 06-50 through 06-52-/A and 07-00 through 07-20 allows remote attackers to cause a denial of service (service stop) via an e-mail message with an "invalid format."
|
NVD-CWE-Other
|
CVE-2005-4324
|
2011-03-8 11:28 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265550
|
- |
|
university_of_arizona
|
webglimpse
|
Cross-site scripting (XSS) vulnerability in webglimpse.cgi in Webglimpse 2.14.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the ID parameter.
|
NVD-CWE-Other
|
CVE-2005-4328
|
2011-03-8 11:28 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|