|
314201
|
- |
|
ethereal_group
|
ethereal
|
Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and g…
|
NVD-CWE-Other
|
CVE-2005-2367
|
2024-02-14 10:17 |
2005-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314202
|
- |
|
whitsoft_development
|
slimftpd
|
Buffer overflow in SlimFTPd 3.15 and 3.16 allows remote authenticated users to execute arbitrary code via a long directory name to (1) LIST, (2) DELE or (3) RNFR commands.
|
NVD-CWE-Other
|
CVE-2005-2373
|
2024-02-14 10:17 |
2005-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314203
|
- |
|
calogic
|
calogic
|
PHP remote file inclusion vulnerability in CaLogic 1.2.2 allows remote attackers to execute arbitrary code via the CLPATH parameter to (1) cl_minical.php, (2) clmcpreload.php, (3) mcconfig.php, or (4…
|
NVD-CWE-Other
|
CVE-2005-2321
|
2024-02-14 10:17 |
2005-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314204
|
- |
|
microsoft
|
msn_messenger_service
|
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users …
|
NVD-CWE-Other
|
CVE-2005-2225
|
2024-02-14 10:17 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314205
|
- |
|
tonec_inc.
|
internet_download_manager
|
Stack-based buffer overflow in Internet Download Manager 4.05 allows remote attackers to execute arbitrary code via a long URL.
|
NVD-CWE-Other
|
CVE-2005-2210
|
2024-02-14 10:17 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314206
|
- |
|
frozenplague.net
|
plague_news_system
|
SQL injection vulnerability in index.php in Plague News System 0.6 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
NVD-CWE-Other
|
CVE-2005-2166
|
2024-02-14 10:17 |
2005-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314207
|
- |
|
frozenplague.net
|
plague_news_system
|
Cross-site scripting (XSS) vulnerability in index.php in Plague News System 0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the cid parameter.
|
NVD-CWE-Other
|
CVE-2005-2167
|
2024-02-14 10:17 |
2005-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314208
|
- |
|
frozenplague.net
|
plague_news_system
|
delete.php in Plague News System 0.6 and earlier allows remote unauthenticated attackers to delete news, comments, and shoutbox posts by modifying the id parameter.
|
NVD-CWE-Other
|
CVE-2005-2168
|
2024-02-14 10:17 |
2005-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314209
|
- |
|
php_fusion
|
php_fusion
|
Cross-site scripting (XSS) vulnerability in PHP-Fusion 6.0.105 allows remote attackers to inject arbitrary web script or HTML via a news or article post, possibly involving the (1) news_body, (2) art…
|
NVD-CWE-Other
|
CVE-2005-2074
|
2024-02-14 10:17 |
2005-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314210
|
- |
|
php_fusion
|
php_fusion
|
PHP-Fusion 5.0 and 6.0 stores the database file with a predictable filename under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information…
|
NVD-CWE-Other
|
CVE-2005-2075
|
2024-02-14 10:17 |
2005-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
