|
351041
|
- |
|
andreas_gohr
|
dokuwiki
|
DokuWiki before 2004-10-19 allows remote attackers to access administrative functionality including (1) Mediaselectiondialog, (2) Recent changes, (3) feed, and (4) search, possibly due to the lack of…
|
NVD-CWE-Other
|
CVE-2004-2559
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351042
|
- |
|
andreas_gohr
|
dokuwiki
|
DokuWiki before 2004-10-19, when used on a web server that permits execution based on file extension, allows remote attackers to execute arbitrary code by uploading a file with an appropriate extensi…
|
NVD-CWE-Other
|
CVE-2004-2560
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351043
|
- |
|
internet_sofware_sciences
|
web\+center
|
Multiple SQL injection vulnerabilities in Internet Software Sciences Web+Center 4.0.1 allow remote attackers to execute arbitrary SQL commands via (1) the ISS_TECH_CENTER_LOGIN cookie in search.asp a…
|
NVD-CWE-Other
|
CVE-2004-2561
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351044
|
- |
|
serena_software
|
serena_teamtrack
|
Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct req…
|
NVD-CWE-Other
|
CVE-2004-2563
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351045
|
- |
|
sambar
|
sambar_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow remote attackers to inject arbitrary web script or HTML via (1)…
|
NVD-CWE-Other
|
CVE-2004-2564
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351046
|
- |
|
sambar
|
sambar_server
|
Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the administrative IP address restrictions have been modified from the …
|
NVD-CWE-Other
|
CVE-2004-2565
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351047
|
- |
|
liveworld
|
livechat
livefocusgroup
liveforum
liveq_and_a
|
Multiple cross-site scripting (XSS) vulnerabilities in LiveWorld products, possibly including (1) LiveForum, (2) LiveQ&A, (3) LiveChat, and (4) LiveFocusGroup, allow remote attackers to inject arbitr…
|
NVD-CWE-Other
|
CVE-2004-2566
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351048
|
- |
|
recipants
|
recipants
|
Multiple SQL injection vulnerabilities in ReciPants 1.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) user id, (2) recipe id, (3) category id, and (4) other ID number fields.
|
NVD-CWE-Other
|
CVE-2004-2567
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351049
|
- |
|
david_stes
|
ipmenu
|
ipmenu 0.0.3 before Debian GNU/Linux ipmenu_0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file.
|
NVD-CWE-Other
|
CVE-2004-2569
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351050
|
- |
|
amax_information_technologies
|
magic_winmail_server
|
AMAX Magic Winmail Server 3.6 allows remote attackers to obtain sensitive information by entering (1) invalid characters such as "()" or (2) a large number of characters in the Lookup field on the ne…
|
NVD-CWE-Other
|
CVE-2004-2572
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
