|
267561
|
- |
|
francisco_burzi
|
php-nuke
|
error.php in Error Manager 2.1 for PHP-Nuke 6.0 allows remote attackers to obtain sensitive information via an invalid (1) language, (2) newlang, or (3) lang parameter, which leaks the pathname in a …
|
NVD-CWE-Other
|
CVE-2004-1830
|
2017-07-11 10:31 |
2004-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267562
|
- |
|
techland
|
chrome
|
Buffer overflow in Chrome 1.2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a packet with a large length value, which leads to a null dereference or out-of-bounds r…
|
NVD-CWE-Other
|
CVE-2004-1831
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267563
|
- |
|
apple
|
mac_os_x_server
|
Buffer overflow in the GUI admin service in Mac OS X Server 10.3 allows remote attackers to cause a denial of service (crash and restart) via a large amount of data to TCP port 660.
|
NVD-CWE-Other
|
CVE-2004-1832
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267564
|
- |
|
borland_software
|
interbase
|
The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to gain database administrative privileges.
|
NVD-CWE-Other
|
CVE-2004-1833
|
2017-07-11 10:31 |
2004-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267565
|
- |
|
invision_power_services
|
invision_gallery
|
Multiple SQL injection vulnerabilities in index.php in Invision Gallery 1.0.1 allow remote attackers to execute arbitrary SQL via the (1) img, (2) cat, (3) sort_key, (4) order_key, (5) user, or (6) a…
|
NVD-CWE-Other
|
CVE-2004-1835
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267566
|
- |
|
invision_power_services
|
invision_power_top_site_list
|
SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and earlier allows remote attackers to execute arbitrary SQL via the id parameter of the comments action.
|
NVD-CWE-Other
|
CVE-2004-1836
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267567
|
- |
|
joel_palmius
|
mod_survey
|
Cross-site scripting (XSS) vulnerability in Mod_survey 3.0.x before 3.0.16-pre2 and 3.2.x before 3.2.0-pre4 allows remote attackers to inject arbitrary web script or HTML via the certain survey field…
|
NVD-CWE-Other
|
CVE-2004-1837
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267568
|
- |
|
xweb
|
xweb
|
Directory traversal vulnerability in xweb 1.0 allows remote attackers to download arbitrary files via a .. (dot dot) in the URL.
|
NVD-CWE-Other
|
CVE-2004-1838
|
2017-07-11 10:31 |
2004-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267569
|
- |
|
francisco_burzi
|
php-nuke
|
Multiple cross-site scripting (XSS) vulnerabilities in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the (1) screen parameter to modules.php, …
|
NVD-CWE-Other
|
CVE-2004-1840
|
2017-07-11 10:31 |
2004-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267570
|
- |
|
ms_analysis
|
website_traffic_analyzer
|
SQL injection vulnerability in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to execute arbitrary SQL via the referer field in an HTTP request.
|
NVD-CWE-Other
|
CVE-2004-1841
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
