|
267351
|
- |
|
roostercode_ajax_softwares
|
alipager
|
Cross-site scripting (XSS) vulnerability in inc/elementz.php in AliPAGER 1.5 allows remote attackers to inject arbitrary web script or HTML via the ubild parameter. NOTE: the provenance of this info…
|
NVD-CWE-Other
|
CVE-2006-2345
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267352
|
- |
|
inter7
|
vpopmail_\(vchkpw\)
|
vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticate to an account that does not have a cleartext password set by using a blank password to (1) SMTP A…
|
NVD-CWE-Other
|
CVE-2006-2346
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267353
|
- |
|
ipswitch
|
whatsup_professional
|
Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via the (…
|
CWE-79
Cross-site Scripting
|
CVE-2006-2351
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267354
|
- |
|
ipswitch
|
whatsup_professional
|
Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via unkno…
|
NVD-CWE-Other
|
CVE-2006-2352
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267355
|
- |
|
ipswitch
|
whatsup_professional
|
NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to redirect users to other websites via the (1) sCancelURL and possib…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-2353
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267356
|
- |
|
ipswitch
|
whatsup_professional
|
NmConsole/Login.asp in Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium generates different error messages in a way that allows remote attackers to enumerate valid us…
|
NVD-CWE-Other
|
CVE-2006-2354
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267357
|
- |
|
ipswitch
|
whatsup_professional
|
Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium allows remote attackers to obtain full path information via 404 error messages. NOTE: the provenance of this informa…
|
NVD-CWE-Other
|
CVE-2006-2355
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267358
|
- |
|
ipswitch
|
whatsup_professional
|
Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain source code for scripts via a trailing dot in a request to NmConsole/Login.asp.
|
NVD-CWE-Other
|
CVE-2006-2357
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267359
|
- |
|
web-labs
|
web-labs_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in various scripts in Web-Labs CMS allow remote attackers to inject arbitrary web script or HTML via (1) the search parameter and (2) unspecified f…
|
NVD-CWE-Other
|
CVE-2006-2358
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267360
|
- |
|
macromedia
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in the validation feature in Macromedia ColdFusion 5 and earlier allows remote attackers to inject arbitrary web script or HTML via a "_required" field when t…
|
NVD-CWE-Other
|
CVE-2006-2364
|
2017-07-20 10:31 |
2006-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
