|
349141
|
- |
|
code-crafters
|
ability_server
|
Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command.
|
NVD-CWE-Other
|
CVE-2004-1627
|
2017-07-11 10:31 |
2004-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349142
|
- |
|
-
|
-
|
Multiple SQL injection vulnerabilities in Dwc_articles 1.6 and earlier allow remote attackers to execute arbitrary SQL statements.
|
NVD-CWE-Other
|
CVE-2004-1629
|
2017-07-11 10:31 |
2004-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349143
|
- |
|
openwfe
|
work_flow_engine
|
Cross-site scripting (XSS) vulnerability in the login form in Open WorkFlow Engine (OpenWFE) 1.4.x allows remote attackers to execute arbitrary web script or HTML via the url parameter.
|
NVD-CWE-Other
|
CVE-2004-1630
|
2017-07-11 10:31 |
2004-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349144
|
- |
|
openwfe
|
work_flow_engine
|
Open WorkFlow Engine (OpenWFE) 1.4.x allows remote attackers to conduct port scans of remote hosts by specifying the target in an rmi:// Worklist URL, then using the response times to infer the resul…
|
NVD-CWE-Other
|
CVE-2004-1631
|
2017-07-11 10:31 |
2004-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349145
|
- |
|
moniwiki
|
moniwiki
|
Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php.
|
NVD-CWE-Other
|
CVE-2004-1632
|
2017-07-11 10:31 |
2004-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349146
|
- |
|
mozilla
|
bugzilla
|
process_bug.cgi in Bugzilla 2.9 through 2.18rc2 and 2.19 from CVS does not check edit permissions on the keywords field, which allows remote authenticated users to modify the keywords in a bug via th…
|
NVD-CWE-Other
|
CVE-2004-1633
|
2017-07-11 10:31 |
2004-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349147
|
- |
|
mozilla
|
bugzilla
|
show_bug.cgi in Bugzilla 2.17.1 through 2.18rc2 and 2.19 from CVS, when using the insidergroup feature and exporting a bug to XML, shows comments and attachment summaries which are marked as private,…
|
NVD-CWE-Other
|
CVE-2004-1634
|
2017-07-11 10:31 |
2004-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349148
|
- |
|
-
|
-
|
Bugzilla 2.17.1 through 2.18rc2 and 2.19 from cvs, when using the insidergroup feature, does not sufficiently protect private attachments when there are changes to the metadata, such as filename, des…
|
NVD-CWE-Other
|
CVE-2004-1635
|
2017-07-11 10:31 |
2004-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349149
|
- |
|
net_integration_technologies_inc.
|
wvtftp
|
Heap-based buffer overflow in the WvTFTPServer::new_connection function in wvtftpserver.cc for WvTftp 0.9 allows remote attackers to execute arbitrary code via a long option string in a TFTP packet.
|
NVD-CWE-Other
|
CVE-2004-1636
|
2017-07-11 10:31 |
2004-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349150
|
- |
|
hawking_technology
|
har11a_dsl_router
|
The Hawking Technologies HAR11A modem/router allows remote attackers to obtain sensitive information by connecting to port 254, which displays a management interface and information on established co…
|
NVD-CWE-Other
|
CVE-2004-1637
|
2017-07-11 10:31 |
2004-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
