265551
|
- |
|
php_arena
|
pafiledb
|
SQL injection vulnerability in pafiledb.php in PHP Arena paFileDB Extreme Edition RC 5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) newsid and (2) id parameter.
|
NVD-CWE-Other
|
CVE-2005-4329
|
2011-03-8 11:28 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265552
|
- |
|
-
|
-
|
SQL injection vulnerability in browse.ihtml in iHTML Merchant Mall allows remote attackers to execute arbitrary SQL commands via the (1) id, (2) store, and (3) step parameters.
|
NVD-CWE-Other
|
CVE-2005-4330
|
2011-03-8 11:28 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265553
|
- |
|
ihtml_merchant
|
ihtml_merchant
|
SQL injection vulnerability in merchant.ihtml in iHTML Merchant Version 2 Pro allows remote attackers to execute arbitrary SQL commands via the (1) step, (2) id, and (3) pid parameters.
|
NVD-CWE-Other
|
CVE-2005-4331
|
2011-03-8 11:28 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265554
|
- |
|
courseforum
|
projectforum
|
Cross-site scripting (XSS) vulnerability in ProjectForum 4.7.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) fwd parameter in admin/adminsignin.html and (2) o…
|
NVD-CWE-Other
|
CVE-2005-4336
|
2011-03-8 11:28 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265555
|
- |
|
macromedia
|
coldfusion
|
ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote attackers to …
|
NVD-CWE-Other
|
CVE-2005-4342
|
2011-03-8 11:28 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265556
|
- |
|
macromedia
|
coldfusion
|
Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote attackers to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled b…
|
NVD-CWE-Other
|
CVE-2005-4343
|
2011-03-8 11:28 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265557
|
- |
|
macromedia
|
coldfusion
|
Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java) setting is disabled, which allows local users to create an object despite the specified configuratio…
|
NVD-CWE-Other
|
CVE-2005-4344
|
2011-03-8 11:28 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265558
|
- |
|
macromedia
|
coldfusion
|
Adobe (formerly Macromedia) ColdFusion MX 7.0 exposes the password hash of the Administrator in an API call, which allows local developers to obtain the hash and gain privileges.
|
NVD-CWE-Other
|
CVE-2005-4345
|
2011-03-8 11:28 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265559
|
- |
|
sun
|
wbem_services
|
Unspecified vulnerability in WBEM Services A.01.x before A.01.05.12 and A.02.x before A.02.00.08 on HP-UX B.11.00 through B.11.23 allows remote attackers to cause an unspecified denial of service via…
|
NVD-CWE-Other
|
CVE-2005-4350
|
2011-03-8 11:28 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265560
|
- |
|
toenda_software_development
|
toendacms
|
SQL injection vulnerability in index.php in toendaCMS 0.6.2.1, when configured to use a SQL database, allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
NVD-CWE-Other
|
CVE-2005-4353
|
2011-03-8 11:28 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|