|
266511
|
- |
|
simm-comm
|
sci_photo_chat
|
Cross-site scripting (XSS) vulnerability in SCI Photo Chat Server 3.4.9 allows remote attackers to execute arbitrary web script as other users via an invalid request that is echoed in the resulting e…
|
NVD-CWE-Other
|
CVE-2004-0673
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266512
|
- |
|
enterasys
|
xsr-1805
xsr-1850
xsr-3000
|
Enterasys XSR-1800 series Security Routers, when running firmware 7.0.0.0 and using Policy-Based Routing, allow remote attackers to cause a denial of service (crash) via a packet with the IP record r…
|
NVD-CWE-Other
|
CVE-2004-0674
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266513
|
- |
|
mcmurtrey_whitaker_and_associates
|
cart32
|
Cross-site scripting (XSS) vulnerability in (1) cart32.exe or (2) c32web.exe in Cart32 shopping cart allows remote attackers to execute arbitrary web script via the cart32 parameter to a GetLatestBui…
|
NVD-CWE-Other
|
CVE-2004-0675
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266514
|
- |
|
fastream
|
netfile_ftp_web_server
|
Fastream NETFile FTP Server 6.7.2.1085 and earlier allows remote attackers to cause a denial of service (temporary hang) via the cd command with an unusual argument, possibly due to multiple leading …
|
NVD-CWE-Other
|
CVE-2004-0677
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266515
|
- |
|
12planet
|
chat_server
|
Cross-site scripting (XSS) in one2planet.infolet.InfoServlet in 12Planet Chat Server 2.9 allows remote attackers to execute arbitrary script as other users via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2004-0678
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266516
|
- |
|
unreal
|
unrealircd
|
The IP cloaking feature (cloak.c) in UnrealIRCd 3.2, and possibly other versions, uses a weak hashing scheme to hide IP addresses, which could allow remote attackers to use brute force methods to gai…
|
NVD-CWE-Other
|
CVE-2004-0679
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266517
|
- |
|
zoom
|
model_5560_x3_ethernet_adsl_modem
|
Zoom X3 ADSL modem has a terminal running on port 254 that can be accessed using the default HTML management password, even if the password has been changed for the HTTP interface, which could allow …
|
NVD-CWE-Other
|
CVE-2004-0680
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266518
|
- |
|
comersus_open_technologies
|
comersus_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_customerAuthenticateForm.asp, (2) comersus_backoffice_message.asp, (3) comersus_supportError.asp, or (4) comersus_message.asp in Co…
|
NVD-CWE-Other
|
CVE-2004-0681
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266519
|
- |
|
comersus_open_technologies
|
comersus_cart
|
This vulnerability is addressed in the following product update:
Comersus Open Technologies, Comersus Cart, 5.098
|
NVD-CWE-Other
|
CVE-2004-0681
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266520
|
- |
|
comersus_open_technologies
|
comersus_cart
|
comersus_gatewayPayPal.asp in Comersus Cart 5.09, and possibly other versions before 5.098, allows remote attackers to change the prices of items by directly modifying them in the URL.
|
NVD-CWE-Other
|
CVE-2004-0682
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
