|
269871
|
- |
|
zeroboard
|
zeroboard
|
Zeroboard 4.1, when the "allow_url_fopen" and "register_globals" variables are enabled, allows remote attackers to execute arbitrary PHP code by modifying the _zb_path parameter to reference a URL on…
|
NVD-CWE-Other
|
CVE-2002-1704
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269872
|
- |
|
phpbb_group
|
phpbb
|
install.php in phpBB 2.0 through 2.0.1, when "allow_url_fopen" and "register_globals" variables are set to "on", allows remote attackers to execute arbitrary PHP code by modifying the phpbb_root_dir …
|
NVD-CWE-Other
|
CVE-2002-1707
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269873
|
- |
|
basilix
|
basilix_webmail
|
Cross-site scripting vulnerability (XSS) in BasiliX Webmail 1.10 allows remote attackers to execute arbitrary script as other users by injecting script into the (1) subject or (2) message fields.
|
NVD-CWE-Other
|
CVE-2002-1708
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269874
|
- |
|
basilix
|
basilix_webmail
|
SQL injection vulnerability in BasiliX Webmail 1.10 allows remote attackers to obtain sensitive information or possibly modify data via the id variable.
|
NVD-CWE-Other
|
CVE-2002-1709
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269875
|
- |
|
basilix
|
basilix_webmail
|
The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the attachment was uploaded by the user or came from a HTTP POST, which could allow local users to steal sens…
|
NVD-CWE-Other
|
CVE-2002-1710
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269876
|
- |
|
basilix
|
basilix_webmail
|
BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local users to read other users' attachments.
|
NVD-CWE-Other
|
CVE-2002-1711
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269877
|
- |
|
ssh
|
ssh
ssh2
|
SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to …
|
NVD-CWE-Other
|
CVE-2002-1715
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269878
|
- |
|
bavo
|
bavo
|
Unknown vulnerability in Bavo 0.3 allows remote attackers to modify posted messages.
|
NVD-CWE-Other
|
CVE-2002-1719
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269879
|
- |
|
outfront
|
spooky_login
|
SQL injection vulnerability in Spooky Login 2.0 through 2.5 allows remote attackers to bypass authentication and gain privileges via the password field.
|
NVD-CWE-Other
|
CVE-2002-1720
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269880
|
- |
|
logitech
|
cordless_freedom_itouch_keyboard
cordless_itouch_keyboard
itouch_keyboard
|
Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button.
|
NVD-CWE-Other
|
CVE-2002-1722
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
