|
351321
|
- |
|
albinator
|
albinator
|
Multiple PHP remote file inclusion vulnerabilities in (1) eday.php, (2) eshow.php, or (3) forgot.php in albinator 2.0.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in t…
|
NVD-CWE-Other
|
CVE-2006-2182
|
2011-03-8 11:35 |
2006-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351322
|
- |
|
chadha_software_technologies
|
phpkb_knowledge_base
|
Cross-site scripting (XSS) vulnerability in search.php in PHPKB Knowledge Base allows remote attackers to inject arbitrary web script or HTML via the searchkeyword parameter. NOTE: the issue was ori…
|
NVD-CWE-Other
|
CVE-2006-2184
|
2011-03-8 11:35 |
2006-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351323
|
- |
|
timobraun
|
dynamic_galerie
|
Cross-site scripting (XSS) vulnerability in Dynamic Galerie 1.0 allows remote attackers to inject arbitrary web script or HTML via the pfad parameter in (1) index.php and (2) galerie.php. NOTE: this…
|
NVD-CWE-Other
|
CVE-2006-2294
|
2011-03-8 11:35 |
2006-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351324
|
- |
|
new_atlanta_communications
|
bluedragon_server
bluedragon_server_jx
|
BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to cause a denial of service (hang) via a request for a .cfm file whose name contains an MS-DOS device name such as (1) c…
|
NVD-CWE-Other
|
CVE-2006-2310
|
2011-03-8 11:35 |
2006-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351325
|
- |
|
new_atlanta_communications
|
bluedragon_server
bluedragon_server_jx
|
This vulnerability is addressed in the following product release:
New Atlanta Communications, BlueDragon Server, 6.2.1.309
|
NVD-CWE-Other
|
CVE-2006-2310
|
2011-03-8 11:35 |
2006-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351326
|
- |
|
new_atlanta_communications
|
bluedragon_server
bluedragon_server_jx
|
Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to inject arbitrary web script or HTML via the filename in a request to a (1)…
|
NVD-CWE-Other
|
CVE-2006-2311
|
2011-03-8 11:35 |
2006-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351327
|
- |
|
updi_network_enterprise
|
at1_event_publisher
|
Cross-site scripting (XSS) vulnerability in tablepublisher.cgi in UPDI Network Enterprise @1 Table Publisher 2006-03-23 allows remote attackers to inject arbitrary web script or HTML via the Title of…
|
NVD-CWE-Other
|
CVE-2006-1795
|
2011-03-8 11:34 |
2006-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351328
|
- |
|
digium
|
asterisk
|
Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but trigg…
|
NVD-CWE-Other
|
CVE-2006-1827
|
2011-03-8 11:34 |
2006-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351329
|
- |
|
francisco_burzi
|
php-nuke
|
Cross-site scripting (XSS) vulnerability in the Your_Account module in PHP-Nuke 7.8 might allows remote attackers to inject arbitrary HTML and web script via the ublock parameter, which is saved in t…
|
NVD-CWE-Other
|
CVE-2006-1846
|
2011-03-8 11:34 |
2006-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351330
|
- |
|
sweetphp
|
totalcalendar
|
PHP remote file inclusion vulnerability in (1) about.php or (2) auth.php in TotalCalendar allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter.
|
NVD-CWE-Other
|
CVE-2006-1922
|
2011-03-8 11:34 |
2006-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
