|
346411
|
- |
|
emotion
|
mediapartner_web_server
|
eMotion MediaPartner Web Server 5.0 and 5.1 allows remote attackers to obtain sensitive information via an HTTP request for a .bhtml file that contains a (1) . (dot) or (2) + (plus sign) at the end, …
|
NVD-CWE-Other
|
CVE-2005-0286
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346412
|
- |
|
bottomline
|
webseries_payment_application
|
Bottomline Webseries Payment Application allows remote attackers to read arbitrary files on the network via a report template with modified ReportPath or ReportName values.
|
NVD-CWE-Other
|
CVE-2005-0287
|
2017-07-11 10:32 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346413
|
- |
|
bottomline
|
webseries_payment_application
|
The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change…
|
NVD-CWE-Other
|
CVE-2005-0288
|
2017-07-11 10:32 |
2005-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346414
|
- |
|
apple
|
airport_express
airport_extreme
|
Apple AirPort Express prior to 6.1.1 and Extreme prior to 5.5.1, configured as a Wireless Data Service (WDS), allows remote attackers to cause a denial of service (device freeze) by connecting to UDP…
|
NVD-CWE-Other
|
CVE-2005-0289
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346415
|
- |
|
netgear
|
fvs318
|
NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to bypass the filters using hex encoded URLs, as demonstrated using a hex encoded file extension.
|
NVD-CWE-Other
|
CVE-2005-0290
|
2017-07-11 10:32 |
2005-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346416
|
- |
|
netgear
|
fvs318
|
Cross-site scripting (XSS) vulnerability in the log viewer in NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via a bl…
|
NVD-CWE-Other
|
CVE-2005-0291
|
2017-07-11 10:32 |
2005-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346417
|
- |
|
php_gift_registry
|
phpgiftreg
|
Multiple SQL injection vulnerabilities in index.php in PHP Gift Registry (phpGiftReg) 1.4.0, and possibly other versions before 1.5.0b1, allow remote attackers to execute arbitrary SQL commands via t…
|
NVD-CWE-Other
|
CVE-2005-0292
|
2017-07-11 10:32 |
2005-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346418
|
- |
|
minis
|
minis
|
Directory traversal vulnerability in minis.php in Minis 0.2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the month parameter.
|
NVD-CWE-Other
|
CVE-2005-0293
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346419
|
- |
|
minis
|
minis
|
minis.php in Minis 0.2.1 allows remote attackers to cause a denial of service (infinite loop) via an HTTP request for a file that the web server does not have permission to read, as demonstrated usin…
|
NVD-CWE-Other
|
CVE-2005-0294
|
2017-07-11 10:32 |
2005-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346420
|
- |
|
inca
|
nprotect_gameguard
|
npptnt2.sys in nProtect Gameguard provides unrestricted I/O to any process that calls it, which allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-0295
|
2017-07-11 10:32 |
2005-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
