|
267781
|
- |
|
finjan_software
|
surfingate
|
Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to (1) restart …
|
NVD-CWE-Other
|
CVE-2004-2107
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267782
|
- |
|
quadcomm
|
q-shop
|
Multiple SQL injection vulnerabilities in QuadComm Q-Shop allow remote attackers to execute arbitrary SQL commands via certain parameters to (1) search.asp, (2) browse.asp, (3) details.asp, (4) showc…
|
NVD-CWE-Other
|
CVE-2004-2108
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267783
|
- |
|
quadcomm
|
q-shop
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) imagezoom.asp or (2) recommend.asp in Q-Shop allow remote attackers to execute arbitrary script and steal the user session ID via Javascript…
|
NVD-CWE-Other
|
CVE-2004-2109
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267784
|
- |
|
herberlin
|
bremsserver
|
Directory traversal vulnerability in BremsServer 1.2.4 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in the URL.
|
NVD-CWE-Other
|
CVE-2004-2112
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267785
|
- |
|
herberlin
|
bremsserver
|
Cross-site scripting (XSS) vulnerability in BremsServer 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the URL.
|
NVD-CWE-Other
|
CVE-2004-2113
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267786
|
- |
|
internetnow
|
proxynow
|
Stack-based and heap-based buffer overflows in ProxyNow! 2.75 and earlier allow remote attackers to execute arbitrary code via a GET request with a long ftp:// URL.
|
NVD-CWE-Other
|
CVE-2004-2114
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267787
|
- |
|
oracle
|
http_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote attackers to execute arbitrary script as other users via the (1) action, (2) username, …
|
NVD-CWE-Other
|
CVE-2004-2115
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267788
|
- |
|
reptile_web_server
|
reptile_web_server
|
Reptile Web Server allows remote attackers to cause a denial of service (CPU consumption) via multiple incomplete GET requests without the HTTP version.
|
NVD-CWE-Other
|
CVE-2004-2120
|
2017-07-11 10:31 |
2004-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267789
|
- |
|
borland_software
|
web_server_for_corel_paradox
|
Multiple directory traversal vulnerabilities in Borland Web Server (BWS) 1.0b3 and earlier allow remote attackers to read and download arbitrary files via (1) multi-dot "......" sequences, or (2) "%5…
|
NVD-CWE-Other
|
CVE-2004-2121
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267790
|
- |
|
intra_forum
|
intra_forum
|
Cross-site scripting (XSS) vulnerability in intraforum_db.cgi in Intra Forum allows remote attackers to inject arbitrary web script or HTML via the (1) use_last_read or (2) forum parameters.
|
NVD-CWE-Other
|
CVE-2004-2122
|
2017-07-11 10:31 |
2004-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
