|
348301
|
- |
|
exponent
|
exponent
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) index.php or (2) mod.php in Exponent 0.95 allow remote attackers to inject arbitrary web script or HTML via the module parameter.
|
NVD-CWE-Other
|
CVE-2005-0309
|
2017-07-11 10:32 |
2005-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348302
|
- |
|
exponent
|
exponent
|
Exponent 0.95 allows remote attackers to obtain sensitive information via a direct HTTP request to (1) search.info.php, (2) permissions.info.php, (3) security.info.php, (4) formcontrol.php, or (5) fi…
|
NVD-CWE-Other
|
CVE-2005-0310
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348303
|
- |
|
ingate
|
ingate_firewall
|
Ingate Firewall 4.1.3 and earlier does not terminate the PPTP session for an active user when the administrator disables that user from a resource, which could allow remote authenticated users to ret…
|
NVD-CWE-Other
|
CVE-2005-0311
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348304
|
- |
|
war_ftp_daemon
|
war_ftp_daemon
|
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a l…
|
NVD-CWE-Other
|
CVE-2005-0312
|
2017-07-11 10:32 |
2005-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348305
|
- |
|
amax_information_technologies
|
magic_winmail_server
|
Multiple directory traversal vulnerabilities in Magic Winmail Server 4.0 Build 1112 allow remote attackers to (1) upload arbitrary files via certain parameters to upload.php or (2) read arbitrary fil…
|
NVD-CWE-Other
|
CVE-2005-0313
|
2017-07-11 10:32 |
2005-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348306
|
- |
|
-
|
-
|
Cross-site scripting (XSS) vulnerability in user.php in Magic Winmail Server 4.0 Build 1112 allows remote attackers to inject arbitrary web script or HTML via the personal information fields.
|
NVD-CWE-Other
|
CVE-2005-0314
|
2017-07-11 10:32 |
2005-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348307
|
- |
|
amax_information_technologies
|
magic_winmail_server
|
The FTP service in Magic Winmail Server 4.0 Build 1112 does not verify that the IP address in a PORT command is the same as the IP address of the user of the FTP session, which allows remote authenti…
|
NVD-CWE-Other
|
CVE-2005-0315
|
2017-07-11 10:32 |
2005-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348308
|
- |
|
webwasher
|
webwasher_classic
|
WebWasher Classic 2.2.1 and 3.3, when running in server mode, does not properly drop CONNECT requests to the localhost from external systems, which could allow remote attackers to bypass intended acc…
|
NVD-CWE-Other
|
CVE-2005-0316
|
2017-07-11 10:32 |
2005-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348309
|
- |
|
alt-n
|
webadmin
|
Cross-site scripting (XSS) vulnerability in useredit_account.wdm in Alt-N WebAdmin 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the user parameter.
|
NVD-CWE-Other
|
CVE-2005-0317
|
2017-07-11 10:32 |
2005-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348310
|
- |
|
alt-n
|
webadmin
|
Direct remote injection vulnerability in modalfram.wdm in Alt-N WebAdmin 3.0.4 allows remote attackers to load external webpages that appear to come from the WebAdmin server, which allows remote atta…
|
NVD-CWE-Other
|
CVE-2005-0319
|
2017-07-11 10:32 |
2005-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
