|
274281
|
- |
|
wordpress
|
wordpress
|
Multiple unspecified vulnerabilities in WordPress before 2.0.4 have unknown impact and remote attack vectors. NOTE: due to lack of details, it is not clear how these issues are different from CVE-20…
|
NVD-CWE-noinfo
|
CVE-2006-4028
|
2011-09-1 13:00 |
2006-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274282
|
- |
|
sun
|
java_system_web_server
|
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote attackers to read arbitrary JSP…
|
CWE-200
Information Exposure
|
CVE-2009-2445
|
2011-08-29 13:00 |
2009-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274283
|
- |
|
ozeki
|
http-sms_gateway
|
Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores usernames and passwords in plaintext in the HKLM\Software\Ozeki\SMSServer\CurrentVersion\Plugins\httpsmsgate registry key, which allows local …
|
CWE-310
Cryptographic Issues
|
CVE-2006-6674
|
2011-08-25 13:00 |
2006-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274284
|
- |
|
postfix
|
postfix
|
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink a…
|
CWE-59
Link Following
|
CVE-2009-2939
|
2011-08-24 12:02 |
2009-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274285
|
- |
|
ibm
|
websphere_application_server
|
PerfServlet in the PMI/Performance Tools component in IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 allows attackers to obtain sensitive information by reading the (1) systemout.log and (2)…
|
CWE-200
Information Exposure
|
CVE-2008-5413
|
2011-08-23 13:00 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274286
|
- |
|
ibm
|
websphere_application_server
|
The vendor has released a fixpack:
http://www-01.ibm.com/support/docview.wss?rs=180&uid=swg24021073
|
CWE-200
Information Exposure
|
CVE-2008-5413
|
2011-08-23 13:00 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274287
|
- |
|
oaboard
|
oaboard
|
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc_stat parameter, a different vulnerability than CVE-2006-00…
|
CWE-94
Code Injection
|
CVE-2006-0094
|
2011-08-23 13:00 |
2006-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274288
|
- |
|
focus-sis
|
focus_sis
|
PHP remote file inclusion vulnerability in modules/Discipline/StudentFieldBreakdown.php in Focus/SIS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the FocusPath parameter, a …
|
CWE-94
Code Injection
|
CVE-2007-4942
|
2011-08-22 13:00 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274289
|
- |
|
pioneers
|
pioneers
|
Pioneers (formerly gnocatan) before 0.11.3 allows remote attackers to cause a denial of service (crash) by triggering a delete operation while the Session object is still being used, as demonstrated …
|
CWE-20
Improper Input Validation
|
CVE-2007-5933
|
2011-08-10 13:00 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274290
|
- |
|
desklance
|
desklance
|
PHP remote file inclusion vulnerability in support/index.php in DeskLance 2.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the main parameter.
|
CWE-94
Code Injection
|
CVE-2005-3835
|
2011-08-10 13:00 |
2005-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
