|
314091
|
- |
|
ultimate_php_board
|
ultimate_php_board
|
Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to gain access via modified user_env, pass_env, power_env, and id_env parameters in a cookie, which comprise a persistent logon that…
|
NVD-CWE-Other
|
CVE-2006-3205
|
2024-02-14 10:17 |
2006-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314092
|
- |
|
ultimate_php_board
|
ultimate_php_board
|
Direct static code injection vulnerability in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote authenticated administrators to execute arbitrary PHP code via multiple unspecified "configurati…
|
NVD-CWE-Other
|
CVE-2006-3208
|
2024-02-14 10:17 |
2006-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314093
|
- |
|
viart
|
shop
|
Multiple cross-site scripting (XSS) vulnerabilities in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, allow remote attackers to inject arbitrary we…
|
NVD-CWE-Other
|
CVE-2006-2979
|
2024-02-14 10:17 |
2006-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314094
|
- |
|
viart_ltd
|
viart_shop_free
|
SQL injection vulnerability in block_forum_topic_new.php in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, might allow remote attackers to execute …
|
NVD-CWE-Other
|
CVE-2006-2980
|
2024-02-14 10:17 |
2006-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314095
|
- |
|
linksys
|
wrt54g
wrt54g_v5
|
Linksys WRT54G Wireless-G Broadband Router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which…
|
NVD-CWE-Other
|
CVE-2006-2559
|
2024-02-14 10:17 |
2006-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314096
|
- |
|
sitecom
|
wl-153_router_firmware
wl-153
|
Sitecom WL-153 router firmware before 1.38 allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-2560
|
2024-02-14 10:17 |
2006-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314097
|
- |
|
edimax
|
br_6104k
|
Edimax BR-6104K router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter (possibly within NewIntern…
|
NVD-CWE-Other
|
CVE-2006-2561
|
2024-02-14 10:17 |
2006-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314098
|
- |
|
zyxel
|
p-335wt_router
|
ZyXEL P-335WT router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-2562
|
2024-02-14 10:17 |
2006-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314099
|
- |
|
lighthouse_development
|
squirrelcart
|
PHP remote file inclusion vulnerability in cart_content.php in Squirrelcart 2.2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cart_isp_root parameter.
|
NVD-CWE-Other
|
CVE-2006-2483
|
2024-02-14 10:17 |
2006-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314100
|
- |
|
popsoft_digital
|
popphoto
|
PHP remote file inclusion vulnerability in resources/includes/popp.config.loader.inc.php in PopSoft Digital PopPhoto Studio 3.5.4 and earlier allows remote attackers to execute arbitrary PHP code via…
|
CWE-94
Code Injection
|
CVE-2006-2395
|
2024-02-14 10:17 |
2006-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
