|
314281
|
- |
|
phpx
|
phpx
|
PHPX 3.2.6 and earlier allows remote attackers to obtain the physical path of PHPX via a null or invalid value in the limit parameter, which leaks the pathname in a database error message, as demonst…
|
NVD-CWE-Other
|
CVE-2004-2362
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314282
|
- |
|
phpx
|
phpx
|
Validate-Before-Canonicalize vulnerability in the checkURI function in functions.inc.php in PHPX 3.0 through 3.2.6 allows remote attackers to conduct cross-site scripting (XSS) attacks via hex-encode…
|
NVD-CWE-Other
|
CVE-2004-2363
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314283
|
- |
|
phpx
|
phpx
|
Cross-site request forgery (CSRF) vulnerability in PHPX 3.0 through 3.2.6 allows remote attackers to execute arbitrary commands via URLs that are automatically executed on behalf of the administrator…
|
NVD-CWE-Other
|
CVE-2004-2364
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314284
|
- |
|
-
|
-
|
PHP remote file inclusion vulnerability in header.php in Opt-X 0.7.2 allows remote attackers to execute arbitrary PHP code via the systempath parameter.
|
NVD-CWE-Other
|
CVE-2004-2368
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314285
|
- |
|
whitsoft_development
|
slimftpd
|
Buffer overflow in SlimFTPd 3.15 and earlier allows local users to execute arbitrary code via a long command, such as (1) CWD, (2) STOR, (3) MKD, and (4) STAT.
|
NVD-CWE-Other
|
CVE-2004-2418
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314286
|
- |
|
-
|
-
|
Directory traversal vulnerability in Nexgen FTP Server before 2.2.3.23 allows remote authenticated users to read or list arbitrary files via (1) "..", (2) "\..\" (backslash dot dot), or (3) "/../" se…
|
NVD-CWE-Other
|
CVE-2004-2487
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314287
|
- |
|
-
|
-
|
Directory traversal vulnerability in Nexgen FTP Server before 2.2.3.23 allows remote authenticated users to read or list arbitrary files via "C:" sequences in the (1) RETR (get), (2) NLST (ls), (3) L…
|
NVD-CWE-Other
|
CVE-2004-2488
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314288
|
- |
|
leigh_business_enterprises
|
web_helpdesk
|
SQL injection vulnerability in jobedit.asp in Leigh Business Enterprises (LBE) Web Helpdesk before 4.0.0.81 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
NVD-CWE-Other
|
CVE-2004-2562
|
2024-02-14 10:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314289
|
- |
|
sco
|
openserver
|
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
|
NVD-CWE-Other
|
CVE-2004-0510
|
2024-02-14 10:17 |
2004-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314290
|
- |
|
ethereal_group
conectiva
sgi
redhat
suse
debian
altlinux
|
ethereal
linux
propack
enterprise_linux
suse_linux
enterprise_linux_desktop
debian_linux
linux_advanced_workstation
alt_linux
|
Unknown vulnerability in the DICOM dissector in Ethereal 0.10.4 through 0.10.7 allows remote attackers to cause a denial of service (application crash).
|
NVD-CWE-Other
|
CVE-2004-1139
|
2024-02-14 10:17 |
2004-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
