|
268371
|
- |
|
mybulletinboard
|
mybulletinboard
|
Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 and earlier allow remote attackers to execute arbitrary web script or HTML via the (1) forums, (2) version, or (…
|
NVD-CWE-Other
|
CVE-2005-1832
|
2016-10-18 12:22 |
2005-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268372
|
- |
|
mybulletinboard
|
mybulletinboard
|
Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 allow remote attackers to execute arbitrary SQL commands via the (1) eid parameter to calendar.php, (2) idsql parameter to on…
|
NVD-CWE-Other
|
CVE-2005-1833
|
2016-10-18 12:22 |
2005-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268373
|
- |
|
nextweb
|
nextweb_\(i\)site
|
SQL injection vulnerability in login.asp in NEXTWEB (i)Site allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field.
|
NVD-CWE-Other
|
CVE-2005-1834
|
2016-10-18 12:22 |
2005-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268374
|
- |
|
nextweb
|
nextweb_\(i\)site
|
NEXTWEB (i)Site allows remote attackers to cause a denial of service (error 500) via a crafted HTTP request, possibly involving wildcard requests for .jsp files.
|
NVD-CWE-Other
|
CVE-2005-1836
|
2016-10-18 12:22 |
2005-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268375
|
- |
|
fortinet
|
fortinet_firewall
|
Fortinet firewall running FortiOS 2.x contains a hardcoded username with the password set to the serial number, which allows local users with console access to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-1837
|
2016-10-18 12:22 |
2005-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268376
|
- |
|
liberum
|
liberum_help_desk
|
Multiple cross-site scripting vulnerabilities in castnewPost.asp in Liberum Help Desk 0.97.3 allow remote attackers to inject arbitrary web script or HTML via the (1) Email, (2) Title, or (3) Descrip…
|
NVD-CWE-Other
|
CVE-2005-1838
|
2016-10-18 12:22 |
2005-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268377
|
- |
|
liberum
|
liberum_help_desk
|
Multiple SQL injection vulnerabilities in Doug Luxem Liberum Help Desk 0.97.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) view.asp or (2) print.asp or (3) edi…
|
NVD-CWE-Other
|
CVE-2005-1839
|
2016-10-18 12:22 |
2005-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268378
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.17.1 through 2.18, 2.19.1, and 2.19.2, when a user is prompted to log in while attempting to view a chart, displays the password in the URL, which may allow local users to gain sensitive i…
|
NVD-CWE-Other
|
CVE-2005-1565
|
2016-10-18 12:21 |
2005-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268379
|
- |
|
arcowave_systems
|
wlan_ap_\+_adsl_router
|
Acrowave AAP-3100AR wireless router allows remote attackers to bypass authentication by pressing CTRL-C at the username or password prompt in a telnet session, which causes the shell to crash and res…
|
NVD-CWE-Other
|
CVE-2005-1566
|
2016-10-18 12:21 |
2005-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268380
|
- |
|
directtopics
|
directtopics
|
SQL injection vulnerability in topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to execute arbitrary SQL commands via the topic parameter.
|
NVD-CWE-Other
|
CVE-2005-1567
|
2016-10-18 12:21 |
2005-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
