|
348341
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.1.0.1 have unspecified impact and attack vectors involving (1) "SOAP requests and responses", (2) mbean, (3) ThreadId…
|
CWE-200
CWE-264
Information Exposure
Permissions, Privileges, and Access Controls
|
CVE-2006-4136
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348342
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server before 6.1.0.1 allows attackers to obtain sensitive information via unspecified vectors related to (1) the log file, (2) "script generated syntax on wsadmin command l…
|
NVD-CWE-Other
|
CVE-2006-4137
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348343
|
- |
|
invision_power_services
|
invision_power_board
|
Unspecified vulnerability in func_topic_threaded.php (aka threaded view mode) in Invision Power Board (IPB) before 2.1.7 21013.60810.s allows remote attackers to "access posts outside the topic."
|
NVD-CWE-Other
|
CVE-2006-4155
|
2011-03-8 11:40 |
2006-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348344
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.0.2.13 have unspecified vectors and impact, including (1) an "authority problem" in ThreadIdentitySupport as identifi…
|
NVD-CWE-Other
|
CVE-2006-4222
|
2011-03-8 11:40 |
2006-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348345
|
- |
|
twiki
|
twiki
|
Directory traversal vulnerability in viewfile in TWiki 4.0.0 through 4.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
|
NVD-CWE-Other
|
CVE-2006-4294
|
2011-03-8 11:40 |
2006-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348346
|
- |
|
cgi-rescue
|
mail_f_w_system
|
CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) before 8.3 allows remote attackers to spoof e-mails and inject e-mail headers via unspecified vectors in (1) mail.cgi and (2) query.…
|
NVD-CWE-Other
|
CVE-2006-4344
|
2011-03-8 11:40 |
2006-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348347
|
- |
|
doctor_web_ltd
|
dr.web
|
Heap-based buffer overflow in SpIDer for Dr.Web Scanner for Linux 4.33, and possibly earlier versions, allows remote attackers to execute arbitrary code via an LHA archive with an extended header tha…
|
NVD-CWE-Other
|
CVE-2006-4438
|
2011-03-8 11:40 |
2006-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348348
|
- |
|
ay_system_solutions
|
ay_system_solutions_cms
|
Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter t…
|
NVD-CWE-Other
|
CVE-2006-4441
|
2011-03-8 11:40 |
2006-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348349
|
- |
|
clemens_wacha
|
php_iaddressbook
|
Cross-site scripting (XSS) vulnerability in PHP iAddressBook before 0.95 allows remote attackers to inject arbitrary web script or HTML via the cat_name parameter, related to adding a category. (cate…
|
NVD-CWE-Other
|
CVE-2006-4442
|
2011-03-8 11:40 |
2006-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348350
|
- |
|
x.org
|
emu-linux-x87-xlibs
x11r6
x11r7
xdm
xf86dga
xinit
xload
xorg-server
xterm
|
X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow…
|
NVD-CWE-Other
|
CVE-2006-4447
|
2011-03-8 11:40 |
2006-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
