|
265691
|
- |
|
media2_cms
|
shop
|
Cross-site scripting (XSS) vulnerability in resultat.asp in SoftMaker Shop allows remote attackers to inject arbitrary web script or HTML via a strSok parameter containing a javascript: URI in an IMG…
|
NVD-CWE-Other
|
CVE-2006-0532
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265692
|
- |
|
cpanel
|
cpanel
|
Cross-site scripting (XSS) vulnerability in webmailaging.cgi in cPanel allows remote attackers to inject arbitrary web script or HTML via the numdays parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2006-0533
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265693
|
- |
|
ubbcentral
|
ubb.threads
|
SQL injection vulnerability in showflat.php in Groupee (formerly known as Infopop) UBB.threads 6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the Number parameter.
|
NVD-CWE-Other
|
CVE-2006-0545
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265694
|
- |
|
oracle
|
database_server
|
Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privil…
|
NVD-CWE-Other
|
CVE-2006-0547
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265695
|
- |
|
oracle
|
database_server
|
SQL injection vulnerability in the Oracle Text component of Oracle Database 10g, and possibly earlier versions, might allow remote attackers to execute arbitrary SQL commands via unknown vectors. NOT…
|
NVD-CWE-Other
|
CVE-2006-0548
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265696
|
- |
|
oracle
|
database_server
|
SQL injection vulnerability in the SYS.DBMS_METADATA_UTIL package in Oracle Database 10g, and possibly earlier versions, might allow remote attackers to execute arbitrary SQL commands via unknown vec…
|
NVD-CWE-Other
|
CVE-2006-0549
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265697
|
- |
|
oracle
|
oracle_client
|
Buffer overflow in an unspecified Oracle Client utility might allow remote attackers to execute arbitrary code or cause a denial of service. NOTE: due to the lack of relevant details from the Oracle…
|
NVD-CWE-Other
|
CVE-2006-0550
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265698
|
- |
|
oracle
|
database_server
|
SQL injection vulnerability in the Data Pump Metadata API in Oracle Database 10g and possibly earlier might allow remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: due to…
|
NVD-CWE-Other
|
CVE-2006-0551
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265699
|
- |
|
oracle
|
10g_enterprise_manager_grid_control
application_server
collaboration_suite
database_server
developer_suite
e-business_suite
enterpriseone
oracle10g
oracle8i
oracle9i
peo…
|
Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# …
|
NVD-CWE-Other
|
CVE-2006-0552
|
2017-07-20 10:29 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265700
|
- |
|
cisco
|
secure_access_control_server
|
Cisco Secure Access Control Server (ACS) 3.x for Windows stores ACS administrator passwords and the master key in the registry with insecure permissions, which allows local users and remote administr…
|
NVD-CWE-Other
|
CVE-2006-0561
|
2017-07-20 10:29 |
2006-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
