|
264171
|
- |
|
pscs
|
vpop3_web_mail_server
|
Cross-site scripting (XSS) vulnerability in PSCS VPOP3 Web Mail server 2.0e and 2.0f allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to the admin/index.html …
|
CWE-79
Cross-site Scripting
|
CVE-2003-1522
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264172
|
- |
|
dbmail
|
dbmail
|
SQL injection vulnerability in the IMAP daemon in dbmail 1.1 allows remote attackers to execute arbitrary SQL commands via the (1) login username, (2) mailbox name, and possibly other attack vectors.
|
CWE-89
SQL Injection
|
CVE-2003-1523
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264173
|
- |
|
pgpi
|
pgpdisk
|
PGPi PGPDisk 6.0.2i does not unmount a PGP partition when the switch user function in Windows XP is used, which could allow local users to access data on another user's PGP partition.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2003-1524
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264174
|
- |
|
my_photo_gallery
|
my_photo_gallery
|
Unspecified vulnerability in My Photo Gallery 3.5, and possibly earlier versions, has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2003-1525
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264175
|
- |
|
seagull_software_systems
|
j_walk_application_server
|
Directory traversal vulnerability in Seagull Software Systems J Walk application server 3.2C9, and other versions before 3.3c4, allows remote attackers to read arbitrary files via a ".%252e" (encoded…
|
CWE-22
Path Traversal
|
CVE-2003-1529
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264176
|
- |
|
lilikoi
|
ceilidh
|
Cross-site scripting (XSS) vulnerability in testcgi.exe in Lilikoi Software Ceilidh 2.70 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string.
|
CWE-79
Cross-site Scripting
|
CVE-2003-1531
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264177
|
- |
|
dcp-portal
|
dcp-portal
|
Multiple cross-site scripting (XSS) vulnerabilities in Codeworx Technologies DCP-Portal 5.3.1 allow remote attackers to inject arbitrary web script or HTML via (1) the q parameter to search.php and (…
|
CWE-79
Cross-site Scripting
|
CVE-2003-1536
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264178
|
- |
|
clearswift_limited
|
mailsweeper
|
The File Blocker feature in Clearswift MAILsweeper for SMTP 4.2 allows remote attackers to bypass e-mail attachment filtering policies via a modified name in a Content-Type header.
|
NVD-CWE-Other
|
CVE-2001-1581
|
2017-07-29 10:29 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264179
|
- |
|
michael_barretto
|
cardboard
|
CardBoard 2.4 greeting card CGI by Michael Barretto allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient field.
|
CWE-20
Improper Input Validation
|
CVE-2001-1584
|
2017-07-29 10:29 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264180
|
- |
|
openbsd
|
openssh
|
SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through 2001-02-08, does not perform a challenge-response step to ensure t…
|
CWE-287
Improper Authentication
|
CVE-2001-1585
|
2017-07-29 10:29 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
