|
345071
|
- |
|
inter7
|
sqwebmail
|
Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 and possibly other versions allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail containing tags with strings …
|
NVD-CWE-Other
|
CVE-2005-2769
|
2017-10-26 10:29 |
2005-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345072
|
- |
|
microsoft
|
windows_nt
|
Windows NT searches a user's home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could a…
|
NVD-CWE-Other
|
CVE-1999-1365
|
2017-10-26 10:29 |
1999-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345073
|
- |
|
apache
|
http_server
|
Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, wh…
|
CWE-200
Information Exposure
|
CVE-2003-1418
|
2017-10-20 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345074
|
- |
|
devellion
|
cubecart
|
PHP remote file include vulnerability in includes/orderSuccess.inc.php in CubeCart allows remote attackers to execute arbitrary PHP code via a URL in the glob[rootDir] parameter.
|
CWE-94
Code Injection
|
CVE-2006-0064
|
2017-10-19 10:29 |
2006-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345075
|
- |
|
valdersoft
|
valdersoft_shopping_cart
|
PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote att…
|
NVD-CWE-Other
|
CVE-2006-0099
|
2017-10-19 10:29 |
2006-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345076
|
- |
|
cisco
|
ip_phone_7940
|
The Cisco IP Phone 7940 allows remote attackers to cause a denial of service (reboot) via a large amount of TCP SYN packets (syn flood) to arbitrary ports, as demonstrated to port 80.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-0179
|
2017-10-19 10:29 |
2006-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345077
|
- |
|
bxcp
|
bxcp
|
SQL injection vulnerability in index.php in BXCP 0.299 allows remote attackers to execute arbitrary SQL commands via the tid parameter.
|
NVD-CWE-Other
|
CVE-2006-0821
|
2017-10-19 10:29 |
2006-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345078
|
- |
|
ilch.de
|
ilchclan
|
SQL injection vulnerability in the forum module of ilchClan 1.05g and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter, when creating a newpost.
|
NVD-CWE-Other
|
CVE-2006-0851
|
2017-10-19 10:29 |
2006-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345079
|
- |
|
devscripts
|
admbook
|
Direct static code injection vulnerability in write.php in Admbook 1.2.2 and earlier allows remote attackers to execute arbitrary PHP code via the X-Forwarded-For HTTP header field, which is inserted…
|
NVD-CWE-Other
|
CVE-2006-0852
|
2017-10-19 10:29 |
2006-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345080
|
- |
|
invision_power_services
|
invision_power_board
|
index.php in Invision Power Board (IPB) 2.0.1, with Code Confirmation disabled, allows remote attackers to cause an unspecified denial of service by registering a large number of users.
|
NVD-CWE-Other
|
CVE-2006-0888
|
2017-10-19 10:29 |
2006-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
