|
265541
|
- |
|
fusionzone
|
couponzone
|
Cross-site scripting (XSS) vulnerability in local.cfm in fusionZONE couponZONE 4.2 allows remote attackers to inject arbitrary web script or HTML via URL-encoded (1) srchfor and (2) srchby parameters.
|
NVD-CWE-Other
|
CVE-2006-1431
|
2017-07-20 10:30 |
2006-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265542
|
- |
|
fusionzone
|
couponzone
|
fusionZONE couponZONE 4.2 allows remote attackers to obtain the full path of the web server, and other sensitive information, via invalid values, as demonstrated using manipulations associated with S…
|
NVD-CWE-Other
|
CVE-2006-1432
|
2017-07-20 10:30 |
2006-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265543
|
- |
|
annuaire
|
directory
|
Annuaire (Directory) 1.0 allows remote attackers to obtain sensitive information via a direct request to include/lang-en.php, which reveals the full installation path.
|
NVD-CWE-Other
|
CVE-2006-1433
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265544
|
- |
|
annuaire
|
directory
|
Cross-site scripting (XSS) vulnerability in inscription.php in Annuaire (Directory) 1.0 allows remote attackers to inject arbitrary web script or HTML via the Comment Field (COMMENTAIRE parameter).
|
NVD-CWE-Other
|
CVE-2006-1434
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265545
|
- |
|
accounting_receiving_and_inventory_administration
|
aria
|
Cross-site scripting (XSS) vulnerability in genmessage.php in Accounting Receiving and Inventory Administration (ARIA) 0.99-6 allows remote attackers to inject arbitrary web script or HTML via the Me…
|
NVD-CWE-Other
|
CVE-2006-1435
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265546
|
- |
|
andy_grayndler
|
andys_php_knowledgebase
|
Multiple cross-site scripting (XSS) vulnerabilities in Andy's PHP Knowledgebase (aphpkb) 0.57 allow remote attackers to inject arbitrary web script or HTML via the (1) keyword_list parameter to (a) i…
|
NVD-CWE-Other
|
CVE-2006-1438
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265547
|
- |
|
apple
|
mac_os_x
|
NSSecureTextField in AppKit in Apple Mac OS X 10.4.6 does not re-enable secure event input under certain circumstances, which could allow other applications in the window session to monitor input cha…
|
CWE-200
Information Exposure
|
CVE-2006-1439
|
2017-07-20 10:30 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265548
|
- |
|
apple
|
mac_os_x
|
This vulnerability is addressed in the following product release:
Apple, Mac OS X, 10.4.6 (2006-003)
|
CWE-200
Information Exposure
|
CVE-2006-1439
|
2017-07-20 10:30 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265549
|
- |
|
apple
|
mac_os_x
|
BOM in Apple Mac OS X 10.3.9 and 10.4.6 allows attackers to overwrite arbitrary files via an archive that contains symbolic links.
|
NVD-CWE-Other
|
CVE-2006-1440
|
2017-07-20 10:30 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265550
|
- |
|
apple
|
mac_os_x
|
This vulnerability is addressed in the following product release:
Apple, Mac OS X, 10.4.6 (2006-003)
|
NVD-CWE-Other
|
CVE-2006-1440
|
2017-07-20 10:30 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
