|
265031
|
- |
|
comersus_open_technologies
|
comersus_backoffice_lite
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote attackers to inject a…
|
NVD-CWE-Other
|
CVE-2005-0303
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265032
|
- |
|
divx
|
divx_player
|
Directory traversal vulnerability in DivX Player 2.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename in a ZIP file for a skin.
|
NVD-CWE-Other
|
CVE-2005-0304
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265033
|
- |
|
siteman
|
siteman
|
CRLF injection vulnerability in users.php in Siteman 1.1.10 and earlier allows remote attackers to add arbitrary users and gain privileges via the line parameter in a docreate operation.
|
NVD-CWE-Other
|
CVE-2005-0305
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265034
|
- |
|
mercuryboard
|
mercuryboard
|
MercuryBoard 1.1.1 allows remote attackers to gain sensitive information via an HTTP request with the n parameter set to 0, which causes a divide-by-zero error and reveals the path in the resulting e…
|
NVD-CWE-Other
|
CVE-2005-0306
|
2017-07-11 10:32 |
2005-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265035
|
- |
|
mercuryboard
|
mercuryboard
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in MercuryBoard 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) s, (2) l, (3) a, (4) t, (5) to, or (6)…
|
NVD-CWE-Other
|
CVE-2005-0307
|
2017-07-11 10:32 |
2005-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265036
|
- |
|
ursoftware
|
w32dasm
|
Buffer overflow in the wsprintf function in W32Dasm 8.93 and earlier allows remote attackers to execute arbitrary code via a large import or export function name.
|
NVD-CWE-Other
|
CVE-2005-0308
|
2017-07-11 10:32 |
2005-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265037
|
- |
|
exponent
|
exponent
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) index.php or (2) mod.php in Exponent 0.95 allow remote attackers to inject arbitrary web script or HTML via the module parameter.
|
NVD-CWE-Other
|
CVE-2005-0309
|
2017-07-11 10:32 |
2005-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265038
|
- |
|
exponent
|
exponent
|
Exponent 0.95 allows remote attackers to obtain sensitive information via a direct HTTP request to (1) search.info.php, (2) permissions.info.php, (3) security.info.php, (4) formcontrol.php, or (5) fi…
|
NVD-CWE-Other
|
CVE-2005-0310
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265039
|
- |
|
ingate
|
ingate_firewall
|
Ingate Firewall 4.1.3 and earlier does not terminate the PPTP session for an active user when the administrator disables that user from a resource, which could allow remote authenticated users to ret…
|
NVD-CWE-Other
|
CVE-2005-0311
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265040
|
- |
|
war_ftp_daemon
|
war_ftp_daemon
|
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a l…
|
NVD-CWE-Other
|
CVE-2005-0312
|
2017-07-11 10:32 |
2005-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
