|
267051
|
- |
|
thomson_netg
|
web_skill_vantage_manager
|
SQL injection vulnerability in login.asp in Thomson Web Skill Vantage Manager allows remote attackers to execute arbitrary SQL commands via the svmPassword parameter.
|
NVD-CWE-Other
|
CVE-2005-2440
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267052
|
- |
|
spi_dynamics
|
webinspect
|
Cross-Application Scripting (XAS) vulnerability in SPI Dynamics WebInspect 5.0.196 allows remote attackers to inject Javascript from one application into another.
|
NVD-CWE-Other
|
CVE-2005-2442
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267053
|
- |
|
kshout
|
kshout
|
Kshout 2.x and 3.x stores settings.dat under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as usernames and passwords.
|
NVD-CWE-Other
|
CVE-2005-2443
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267054
|
- |
|
cerulean_studios
|
trillian_pro
|
Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a world readable file and does not delete the file after login, which allows local users to obtain sensitiv…
|
NVD-CWE-Other
|
CVE-2005-2444
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267055
|
- |
|
early_impact
|
product_cart
|
SQL injection vulnerability in viewPrd.asp in Product Cart 2.6 allows remote attackers to execute arbitrary SQL commands via the idcategory parameter.
|
NVD-CWE-Other
|
CVE-2005-2445
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267056
|
- |
|
sandbox
|
sandbox
|
Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files via symlink attack on sandboxpids.tmp.
|
NVD-CWE-Other
|
CVE-2005-2449
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267057
|
- |
|
clam_anti-virus
|
clamav
|
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a craf…
|
NVD-CWE-Other
|
CVE-2005-2450
|
2017-07-11 10:32 |
2005-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267058
|
- |
|
networkactiv
|
networkactiv_web_server
|
Cross-site scripting (XSS) vulnerability in NetworkActiv Web Server 1.0, 2.0.0.6, 3.0.1.1, and 3.5.13, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via …
|
NVD-CWE-Other
|
CVE-2005-2453
|
2017-07-11 10:32 |
2005-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267059
|
- |
|
greasemonkey
|
greasemonkey
|
Greasemonkey before 0.3.5 allows remote web servers to (1) read arbitrary files via a GET request to a file:// URL in the GM_xmlhttpRequest API function, (2) list installed scripts using GM_scripts, …
|
NVD-CWE-Other
|
CVE-2005-2455
|
2017-07-11 10:32 |
2005-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267060
|
- |
|
openbook
|
openbook
|
Multiple SQL injection vulnerabilities in the auth_user function in admin.php in OpenBook 1.2.2 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter.
|
NVD-CWE-Other
|
CVE-2005-2466
|
2017-07-11 10:32 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
