|
343551
|
- |
|
dev
|
dev_web_management_system
|
Cross-site scripting (XSS) vulnerability in add.php in DEV web management system 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ENTER_ARTICLE_TITLE, (2) SP…
|
NVD-CWE-Other
|
CVE-2005-4555
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343552
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
PHP remote file include vulnerability in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, when register_globals is enabled, allows remote at…
|
NVD-CWE-Other
|
CVE-2005-4556
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343553
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
dir/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, allows remote attackers to include arbitrary local files via a null byt…
|
NVD-CWE-Other
|
CVE-2005-4557
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343554
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly restrict acceptable values for the language parameter to mail/settings.ht…
|
NVD-CWE-Other
|
CVE-2005-4558
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343555
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
mail/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly initialize the default_layout and layout_settings va…
|
NVD-CWE-Other
|
CVE-2005-4559
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343556
|
- |
|
microsoft
|
windows_2003_server
windows_xp
|
The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC…
|
CWE-20
Improper Input Validation
|
CVE-2005-4560
|
2018-10-20 00:41 |
2005-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343557
|
- |
|
scott_draves
|
electric_sheep
|
Buffer overflow in Electric Sheep 2.6.3 client allows local users to execute arbitrary code via a long window-id parameter. NOTE: because the program is not setuid and not normally called from remote…
|
NVD-CWE-Other
|
CVE-2005-4581
|
2018-10-20 00:41 |
2005-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343558
|
- |
|
scott_draves
|
electric_sheep
|
Electric Sheep 2.6.3 does not require authentication or integrity checks from the server to the client, which allows remote attackers to download and display arbitrary MPEG movie files via (1) DNS sp…
|
NVD-CWE-Other
|
CVE-2005-4582
|
2018-10-20 00:41 |
2005-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343559
|
- |
|
spb
|
kiosk_engine
|
Spb Kiosk Engine 1.0.0.1 stores the administrator's passcode in the registry in plaintext, which allows local users to obtain the passcode.
|
NVD-CWE-Other
|
CVE-2005-4589
|
2018-10-20 00:41 |
2005-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343560
|
- |
|
spb
|
kiosk_engine
|
Spb Kiosk Engine 1.0.0.1 allows local users to bypass restrictions on allowed applications via (1) removable media containing a program that will execute because of the autorun setting and (2) applic…
|
NVD-CWE-Other
|
CVE-2005-4590
|
2018-10-20 00:41 |
2005-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
