|
264951
|
- |
|
drupal
|
drupal_userreview_module
|
Cross-site scripting (XSS) vulnerability in the Drupal 4.7 Userreview module before 1.19 2006/09/12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2006-4821
|
2017-07-20 10:33 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264952
|
- |
|
emusoft
|
emucms
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in eMuSOFT emuCMS 0.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) query or (2) page paramete…
|
NVD-CWE-Other
|
CVE-2006-4822
|
2017-07-20 10:33 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264953
|
- |
|
sophos
|
sophos_anti-virus
|
Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
|
NVD-CWE-Other
|
CVE-2006-4839
|
2017-07-20 10:33 |
2006-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264954
|
- |
|
ibm
|
lotus_domino
|
Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to inject arbitrary web script or HTML …
|
NVD-CWE-Other
|
CVE-2006-4843
|
2017-07-20 10:33 |
2007-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264955
|
- |
|
claroline
dokeos
|
claroline
open_source_learning_and_knowledge_management_tool
|
PHP remote file inclusion vulnerability in inc/claro_init_local.inc.php in Claroline 1.7.7 and earlier, as used in Dokeos and possibly other products, allows remote attackers to execute arbitrary PHP…
|
CWE-94
Code Injection
|
CVE-2006-4844
|
2017-07-20 10:33 |
2006-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264956
|
- |
|
claroline
dokeos
|
claroline
open_source_learning_and_knowledge_management_tool
|
Successful exploitation requires that "register_globals" is enabled.
This vulnerability is addressed in the following product release:
Claroline, Claroline, 1.7.8
|
CWE-94
Code Injection
|
CVE-2006-4844
|
2017-07-20 10:33 |
2006-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264957
|
- |
|
citrix
|
access_gateway
|
Unspecified vulnerability in Citrix Access Gateway with Advanced Access Control (AAC) 4.2 before 20060914, when AAC is configured to use LDAP authentication, allows remote attackers to bypass authent…
|
NVD-CWE-Other
|
CVE-2006-4846
|
2017-07-20 10:33 |
2006-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264958
|
- |
|
citrix
|
access_gateway
|
Successful exploitation requires that the Advanced Access Control option is set to use LDAP authentication.
This vulnerability is addressed by hotfix AAC420W004.
|
NVD-CWE-Other
|
CVE-2006-4846
|
2017-07-20 10:33 |
2006-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264959
|
- |
|
bolinos
|
bolinos
|
PHP remote file inclusion vulnerability in system/_b/contentFiles/gBHTMLEditor.php in BolinOS 4.5.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the gBRootPath param…
|
NVD-CWE-Other
|
CVE-2006-4851
|
2017-07-20 10:33 |
2006-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264960
|
- |
|
symantec
|
veritas_netbackup_client
veritas_netbackup_enterprise_server
veritas_netbackup_server
|
The NetBackup bpcd daemon (bpcd.exe) in Symantec Veritas NetBackup 5.0 before 5.0_MP7, 5.1 before 5.1_MP6, and 6.0 before 6.0_MP4 does not properly check for chained commands, which allows remote att…
|
NVD-CWE-Other
|
CVE-2006-4902
|
2017-07-20 10:33 |
2006-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
