|
266161
|
- |
|
nortel
|
contivity
|
Nortel Contivity VPN Client 2.1.7, 3.00, 3.01, 4.91, and 5.01, when opening a VPN tunnel, does not check the gateway certificate until after a dialog box has been displayed to the user, which creates…
|
NVD-CWE-Other
|
CVE-2004-2621
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266162
|
- |
|
altiris
|
deployment_server_extension_for_ibm_director
|
AClient.exe in Altiris Deployment Solution 6.x and 5.x does not require authentication from the first Deployment Server that it connects to, which allows remote malicious servers to gain administrato…
|
NVD-CWE-Other
|
CVE-2004-2622
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266163
|
- |
|
matthew_skala
|
rippy_the_aggregator
|
Unknown vulnerability in Rippy the Aggregator before 0.10, when register_globals is enabled, has unknown attack vectors and impact, possibly related to the "user-controlled filter."
|
NVD-CWE-Other
|
CVE-2004-2623
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266164
|
- |
|
wackowiki
|
wackowiki
|
Cross-site scripting (XSS) vulnerability in "TextSearch" in WackoWiki 3.5 allows remote attackers to inject arbitrary web script or HTML via the "phrase" parameter.
|
NVD-CWE-Other
|
CVE-2004-2624
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266165
|
- |
|
outblaze
|
outblaze_email
|
Cross-site scripting (XSS) vulnerability in Outblaze Email allows remote attackers to inject arbitrary web script or HTML via Javascript in an attribute of an IMG tag.
|
NVD-CWE-Other
|
CVE-2004-2625
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266166
|
- |
|
siemens
|
s55
|
GUI overlay vulnerability in the Java API in Siemens S55 cellular phones allows remote attackers to send unauthorized SMS messages by overlaying a confirmation message with a malicious message.
|
NVD-CWE-Other
|
CVE-2004-2626
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266167
|
- |
|
-
|
-
|
Java 2 Micro Edition (J2ME) does not properly validate bytecode, which allows remote attackers to escape the Kilobyte Virtual Machine (KVM) sandbox and execute arbitrary code.
|
NVD-CWE-Other
|
CVE-2004-2627
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266168
|
- |
|
acme_labs
|
thttpd
|
Multiple directory traversal vulnerabilities in thttpd 2.07 beta 0.4, when running on Windows, allow remote attackers to read arbitrary files via a URL that contains (1) a hex-encoded backslash dot-d…
|
NVD-CWE-Other
|
CVE-2004-2628
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266169
|
- |
|
phpmyadmin
|
phpmyadmin
|
The MIME transformation system (transformations/text_plain__external.inc.php) in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in uns…
|
NVD-CWE-Other
|
CVE-2004-2630
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266170
|
- |
|
phpmyadmin
|
phpmyadmin
|
Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name.
|
NVD-CWE-Other
|
CVE-2004-2631
|
2017-07-20 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
