|
313471
|
- |
|
apache
ncsa
|
http_server
ncsa_httpd
|
phf CGI program allows remote command execution through shell metacharacters.
|
CWE-78
OS Command
|
CVE-1999-0067
|
2024-01-27 05:00 |
1996-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313472
|
- |
|
e107
|
e107
|
ImageManager in e107 before 0.617 does not properly check the types of uploaded files, which allows remote attackers to execute arbitrary code by uploading a PHP file via the upload parameter to imag…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2004-2262
|
2024-01-27 04:10 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313473
|
- |
|
yvesglodt
|
i-man
|
I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2005-1868
|
2024-01-27 04:07 |
2005-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313474
|
- |
|
yapig
|
yapig
|
upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP co…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2005-1881
|
2024-01-27 04:07 |
2005-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313475
|
- |
|
deluxebb
|
deluxebb
|
DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupl…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2006-4558
|
2024-01-27 04:02 |
2006-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313476
|
- |
|
duware_dubanner_project
|
duware_dubanner
|
add.asp in DUware DUbanner 3.1 allows remote attackers to execute arbitrary code by uploading files with arbitrary extensions, such as ASP files, probably due to client-side enforcement that can be b…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2006-2428
|
2024-01-27 04:01 |
2006-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313477
|
- |
|
rockliffe
|
mailsite_express
|
Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the ca…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2005-3288
|
2024-01-27 04:01 |
2005-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313478
|
- |
|
linux
canonical
debian
mandriva
|
linux_kernel
ubuntu_linux
debian_linux
linux
|
The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2005-3181
|
2024-01-27 03:56 |
2005-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313479
|
- |
|
linux
|
linux_kernel
|
The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activ…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2004-0427
|
2024-01-27 03:56 |
2004-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313480
|
- |
|
openbsd
|
openbsd
|
Multiple memory leaks in isakmpd in OpenBSD 3.4 and earlier allow remote attackers to cause a denial of service (memory exhaustion) via certain ISAKMP packets, as demonstrated by the Striker ISAKMP P…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2004-0222
|
2024-01-27 03:55 |
2004-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
