270581
|
- |
|
dvbbs
|
dvbbs
|
Multiple cross-site scripting (XSS) vulnerabilities in DVBBS 7.1 SP2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the page parameter to dispbbs.asp, (2) name para…
|
NVD-CWE-Other
|
CVE-2005-2588
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270582
|
- |
|
linksys
|
wrt54gs
|
Unknown vulnerability in Linksys WRT54GS wireless router with firmware 4.50.6, with WPA Personal/TKIP authentication enabled, allows remote clients to bypass authentication by connecting without usin…
|
NVD-CWE-Other
|
CVE-2005-2589
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270583
|
- |
|
apple
|
safari
|
Apple Safari 1.3 (132) on Mac OS X 1.3.9 allows remote attackers to cause a denial of service (crash) via certain Javascript, possibly involving a function that defines a handler for itself within th…
|
NVD-CWE-Other
|
CVE-2005-2594
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270584
|
- |
|
dada_mail
|
dada_mail
|
Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages.
|
NVD-CWE-Other
|
CVE-2005-2595
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270585
|
- |
|
gallery_project
|
gallery
|
User.php in Gallery, as used in Postnuke, allows users with any Admin privileges to gain access to all galleries.
|
NVD-CWE-Other
|
CVE-2005-2596
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270586
|
- |
|
dokeos
|
dokeos
|
Multiple directory traversal vulnerabilities in Dokeos 1.6 and earlier, and possibly Claroline, allow remote attackers to (1) delete arbitrary files or directories via the delete parameter to claroli…
|
NVD-CWE-Other
|
CVE-2005-2598
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270587
|
- |
|
ilia_alshanetsky
|
fudforum
|
FUDForum 2.6.15 with "Tree View" enabled, as used in other products such as phpgroupware and egroupware, allows remote attackers to read private posts via a modified mid parameter.
|
NVD-CWE-Other
|
CVE-2005-2600
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270588
|
- |
|
midicart_software
|
midicart_php_shopping_cart
|
SQL injection vulnerability in MidiCart allows remote attackers to execute arbitrary SQL commands via the code_no parameter to (1) Item_Show.asp or (2) search_list.asp.
|
NVD-CWE-Other
|
CVE-2005-2601
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270589
|
- |
|
mozilla
|
firefox thunderbird
|
Mozilla Thunderbird 1.0 and Firefox 1.0.6 allows remote attackers to obfuscate URIs via a long URI, which causes the address bar to go blank and could facilitate phishing attacks.
|
NVD-CWE-Other
|
CVE-2005-2602
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270590
|
- |
|
omnipilot_software
|
lasso_professional_server
|
Unknown vulnerability in Lasso Professional Server8.0.4 and 8.0.5 allows attackers to bypass authentication, related to [Auth] tags.
|
NVD-CWE-Other
|
CVE-2005-2605
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|