|
318101
|
4.3 |
MEDIUM
Network
|
invisioncommunity
|
gallery
|
Cross-site request forgery (CSRF) vulnerability in Invision Gallery before 1.3.1 allows remote attackers to delete albums and images as another user via a link or IMG tag to the (1) albums or (2) del…
|
CWE-352
Origin Validation Error
|
CVE-2005-1947
|
2024-02-9 05:44 |
2005-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318102
|
9.8 |
CRITICAL
Network
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 7.0 through Service Pack 5 does not log out users when an application is redeployed, which allows those users to continue to access the application without ha…
|
CWE-459
Incomplete Cleanup
|
CVE-2005-1744
|
2024-02-9 05:35 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318103
|
7.5 |
HIGH
Network
|
accessdata
|
secureclean
|
SecureClean 3 build 2.0 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be …
|
CWE-459
Incomplete Cleanup
|
CVE-2002-2070
|
2024-02-9 05:35 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318104
|
7.5 |
HIGH
Network
|
microsoft
|
windows_nt
|
Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource exhaustion) via a series of connections containing …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-1999-1127
|
2024-02-9 05:35 |
1999-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318105
|
7.5 |
HIGH
Network
|
tolvanen
|
eraser
|
Eraser 5.3 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
|
CWE-459
Incomplete Cleanup
|
CVE-2002-2068
|
2024-02-9 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318106
|
7.5 |
HIGH
Network
|
pgp
|
personal_privacy
|
PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
|
CWE-459
Incomplete Cleanup
|
CVE-2002-2069
|
2024-02-9 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318107
|
7.5 |
HIGH
Network
|
east-tec
|
eraser
|
East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be del…
|
CWE-459
Incomplete Cleanup
|
CVE-2002-2067
|
2024-02-9 05:28 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318108
|
5.5 |
MEDIUM
Local
|
oracle
|
forms_builder
|
Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file, which is not deleted after it is used, which allows local users to obtain sensitive information.
|
CWE-459
Incomplete Cleanup
|
CVE-2005-2293
|
2024-02-9 05:13 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318109
|
7.5 |
HIGH
Network
|
jetico
|
bcwipe
|
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information th…
|
CWE-459
Incomplete Cleanup
|
CVE-2002-2066
|
2024-02-9 05:13 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318110
|
5.5 |
MEDIUM
Local
|
pgp
|
freeware
corporate_desktop
personal_security
|
An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to str…
|
CWE-459
Incomplete Cleanup
|
CVE-2002-0788
|
2024-02-9 05:13 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
