|
346641
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 6.0.2 before FixPack 3 allows remote attackers to bypass authentication for the Welcome Page via a request to the default context root.
|
NVD-CWE-Other
|
CVE-2006-2342
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346642
|
- |
|
adventnet
|
manageengine_opmanager
|
Cross-site scripting (XSS) vulnerability in Search.do in ManageEngine OpManager 6.0 allows remote attackers to inject arbitrary web script or HTML via the searchTerm parameter. NOTE: the provenance …
|
NVD-CWE-Other
|
CVE-2006-2343
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346643
|
- |
|
ajax_softwares
|
alipager
|
SQL injection vulnerability in inc/elementz.php in AliPAGER 1.5, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the ubild parameter.
|
NVD-CWE-Other
|
CVE-2006-2344
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346644
|
- |
|
roostercode_ajax_softwares
|
alipager
|
Cross-site scripting (XSS) vulnerability in inc/elementz.php in AliPAGER 1.5 allows remote attackers to inject arbitrary web script or HTML via the ubild parameter. NOTE: the provenance of this info…
|
NVD-CWE-Other
|
CVE-2006-2345
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346645
|
- |
|
inter7
|
vpopmail_\(vchkpw\)
|
vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticate to an account that does not have a cleartext password set by using a blank password to (1) SMTP A…
|
NVD-CWE-Other
|
CVE-2006-2346
|
2017-07-20 10:31 |
2006-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346646
|
- |
|
ipswitch
|
whatsup_professional
|
Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via the (…
|
CWE-79
Cross-site Scripting
|
CVE-2006-2351
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346647
|
- |
|
ipswitch
|
whatsup_professional
|
Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via unkno…
|
NVD-CWE-Other
|
CVE-2006-2352
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346648
|
- |
|
ipswitch
|
whatsup_professional
|
NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to redirect users to other websites via the (1) sCancelURL and possib…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-2353
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346649
|
- |
|
ipswitch
|
whatsup_professional
|
NmConsole/Login.asp in Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium generates different error messages in a way that allows remote attackers to enumerate valid us…
|
NVD-CWE-Other
|
CVE-2006-2354
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346650
|
- |
|
ipswitch
|
whatsup_professional
|
Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium allows remote attackers to obtain full path information via 404 error messages. NOTE: the provenance of this informa…
|
NVD-CWE-Other
|
CVE-2006-2355
|
2017-07-20 10:31 |
2006-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
