270401
|
- |
|
blackboard
|
academic_suite
|
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to list all available categories via a blank category_id par…
|
NVD-CWE-Other
|
CVE-2005-4341
|
2008-09-6 05:56 |
2005-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270402
|
- |
|
icms_content_management_systems
|
icms
|
Cross-site scripting (XSS) vulnerability in admin/Default.asp in iCMS allows remote attackers to inject arbitrary web script or HTML via the LoginMSG parameter. NOTE: the provenance of this issue is…
|
NVD-CWE-Other
|
CVE-2005-4396
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270403
|
- |
|
icms_content_management_systems
|
icms
|
SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter.
|
NVD-CWE-Other
|
CVE-2005-4397
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270404
|
- |
|
media2_cms
|
media2_cms_shop
|
SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. NOTE: the provenance of this issue is unknown; th…
|
NVD-CWE-Other
|
CVE-2005-4404
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270405
|
- |
|
citrix
|
program_neighborhood_client
|
Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the…
|
NVD-CWE-Other
|
CVE-2005-4412
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270406
|
- |
|
ibm
|
websphere_application_server
|
Multiple cross-site scripting (XSS) vulnerabilities in sample scripts in IBM WebSphere Application Server 6 allow remote attackers to inject arbitrary web script or HTML via the (1) E-mail address fi…
|
NVD-CWE-Other
|
CVE-2005-4413
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270407
|
- |
|
open_lab
|
teamwork
|
Unspecified vulnerability in Teamwork 3 before alpha 1.7 has unknown impact and attack vectors, related to "a menu security bug."
|
NVD-CWE-Other
|
CVE-2005-4414
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270408
|
- |
|
tml
|
tml
|
Cross-site scripting (XSS) vulnerability in index.php in TML CMS 0.5 allows remote attackers to inject arbitrary web script or HTML via the form parameter.
|
NVD-CWE-Other
|
CVE-2005-4415
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270409
|
- |
|
tml
|
tml
|
SQL injection vulnerability in index.php in TML CMS 0.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
NVD-CWE-Other
|
CVE-2005-4416
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270410
|
- |
|
toenda_software_development
|
toendacms
|
Unrestricted file upload vulnerability in toendaCMS before 0.6.2 Stable allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then acc…
|
NVD-CWE-Other
|
CVE-2005-4422
|
2008-09-6 05:56 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|