271821
|
- |
|
john_lim
|
adodb
|
John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals…
|
NVD-CWE-Other
|
CVE-2004-2664
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271822
|
- |
|
john_lim
|
adodb
|
This vulnerability is addressed in the following product release:
John Lim, ADOdb, 4.23
|
NVD-CWE-Other
|
CVE-2004-2664
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271823
|
- |
|
mantis
|
mantis
|
Mantis before 20041016 provides a complete Issue History (Bug History) in the web interface regardless of view_history_threshold, which allows remote attackers to obtain sensitive information (privat…
|
NVD-CWE-Other
|
CVE-2004-2666
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271824
|
- |
|
-
|
-
|
Cross-site scripting (XSS) vulnerability in Lotus Domino 6.0.x before 6.0.4 and 6.5.x before 6.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
|
NVD-CWE-Other
|
CVE-2004-2667
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271825
|
- |
|
-
|
-
|
SQL injection vulnerability in Interchange before 4.8.9 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
|
NVD-CWE-Other
|
CVE-2004-2668
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271826
|
- |
|
argosoft
|
ftp_server
|
Unspecified vulnerability in ArGoSoft FTP server before 1.4.2.2 allows attackers to upload .lnk files via unknown vectors.
|
NVD-CWE-Other
|
CVE-2004-2672
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271827
|
- |
|
argosoft
|
ftp_server
|
This vulnerability is addressed in the following product release:
ArGoSoft, FTP server, 1.4.2.2
|
NVD-CWE-Other
|
CVE-2004-2672
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271828
|
- |
|
peersec_networks
|
matrixssl
|
PeerSec MatrixSSL before 1.1 does not implement RSA blinding, which allows context-dependent attackers to obtain the server's private key by determining factors using timing differences on (1) the nu…
|
NVD-CWE-Other
|
CVE-2004-2682
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271829
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Gyach Enhanced (Gyach-E) before 1.0.0 stores passwords in plaintext, which allows attackers to obtain user passwords by reading the configuration file.
|
CWE-255
Credentials Management
|
CVE-2004-2708
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271830
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Buffer overflow in the strip_html_tags method for Gyach Enhanced (Gyach-E) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown vectors in…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-2709
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|