|
351421
|
- |
|
episodex
|
episodex_guestbook
|
Cross-site scripting (XSS) vulnerability in default.asp for episodex guestbook allows remote attackers to inject arbitrary web script or HTML via the Name field and other fields.
|
NVD-CWE-Other
|
CVE-2005-1684
|
2016-10-18 12:21 |
2005-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351422
|
- |
|
wordpress
|
wordpress
|
SQL injection vulnerability in wp-trackback.php in Wordpress 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the tb_id parameter.
|
NVD-CWE-Other
|
CVE-2005-1687
|
2016-10-18 12:21 |
2005-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351423
|
- |
|
postnuke_software_foundation
|
postnuke
|
Multiple SQL injection vulnerabilities in Xanthia.php in the Xanthia module in PostNuke 0.750 allow remote attackers to execute arbitrary SQL commands via the (1) name or (2) module parameter.
|
NVD-CWE-Other
|
CVE-2005-1694
|
2016-10-18 12:21 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351424
|
- |
|
postnuke_software_foundation
|
postnuke
|
Multiple cross-site scripting (XSS) vulnerabilities in the RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allow remote attackers to inject arbitrary web script or HTML via the (1) rss_url paramete…
|
NVD-CWE-Other
|
CVE-2005-1695
|
2016-10-18 12:21 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351425
|
- |
|
postnuke_software_foundation
|
postnuke
|
Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.750 and 0.760RC3 allow remote attackers to inject arbitrary web script or HTML via the (1) skin or (2) paletteid parameter to demo.ph…
|
NVD-CWE-Other
|
CVE-2005-1696
|
2016-10-18 12:21 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351426
|
- |
|
postnuke_software_foundation
|
postnuke
|
Directory traversal vulnerability in pnadminapi.php in the Xanthia module in PostNuke 0.760-RC3 allows remote administrators to read arbitrary files via a .. (dot dot) in the skin parameter.
|
NVD-CWE-Other
|
CVE-2005-1699
|
2016-10-18 12:21 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351427
|
- |
|
postnuke_software_foundation
|
postnuke
|
SQL injection vulnerability in pnadmin.php in the Xanthia module in PostNuke 0.760-RC3 allows remote administrators to execute arbitrary SQL commands via the riga[0] parameter.
|
NVD-CWE-Other
|
CVE-2005-1700
|
2016-10-18 12:21 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351428
|
- |
|
portailphp
|
portailphp
|
SQL injection vulnerability in PortailPHP 1.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to the (1) News, (2) File, (3) Liens, or (4) Faq modules.
|
NVD-CWE-Other
|
CVE-2005-1701
|
2016-10-18 12:21 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351429
|
- |
|
cj
|
ultra_plus
|
SQL injection vulnerability in out.php in CJ Ultra (CJUltra) Plus 1.0.3 and 1.0.4 allows remote attackers to execute arbitrary SQL commands via the perm parameter.
|
NVD-CWE-Other
|
CVE-2005-1506
|
2016-10-18 12:20 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351430
|
- |
|
pwsphp
|
pwsphp
|
PwsPHP 1.2.2 allows remote attackers to obtain sensitive information via a direct request to the admin directory, which reveals the path in an error message.
|
NVD-CWE-Other
|
CVE-2005-1510
|
2016-10-18 12:20 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
