|
352451
|
- |
|
maelstrom
|
maelstrom_gpl
|
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.
|
NVD-CWE-Other
|
CVE-2002-0141
|
2008-11-4 14:23 |
2002-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352452
|
- |
|
awstats
|
awstats
|
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the config parameter. NOTE: this might be the sam…
|
NVD-CWE-Other
|
CVE-2006-1945
|
2008-11-3 15:18 |
2006-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352453
|
- |
|
leadhound_network
|
leadhound_full
leadhound_lite
|
Multiple SQL injection vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to execute arbitrary SQL commands via the (1) banner par…
|
NVD-CWE-Other
|
CVE-2006-2062
|
2008-11-3 15:18 |
2006-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352454
|
- |
|
leadhound_network
|
leadhound_full
leadhound_lite
|
Multiple cross-site scripting (XSS) vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to inject arbitrary web script or HTML via …
|
NVD-CWE-Other
|
CVE-2006-2063
|
2008-11-3 15:18 |
2006-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352455
|
- |
|
ecotwo
|
shopsystem
|
Unspecified vulnerability in ecotwo Shopsystem 1.0-192 and earlier allows remote attackers to include arbitrary local files via (1) the lang parameter in news.php and (2) other unspecified vectors.
|
NVD-CWE-Other
|
CVE-2006-1684
|
2008-11-3 15:16 |
2006-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352456
|
- |
|
apt
|
apt-webshop-system
|
Unspecified vulnerability in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to access unspecified files via a modified warp parameter.
|
NVD-CWE-Other
|
CVE-2006-1686
|
2008-11-3 15:16 |
2006-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352457
|
- |
|
hp
|
hp-ux
|
Buffer overflow in the DCE daemon (DCED) for the DCE endpoint mapper (epmap) on HP-UX 11 allows remote attackers to execute arbitrary code via a request with a small fragment length and a large amoun…
|
NVD-CWE-Other
|
CVE-2004-0716
|
2008-10-24 13:32 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352458
|
- |
|
wsn_knowledge_base
|
wsn_knowledge_base
|
Multiple SQL injection vulnerabilities in WSN Knowledge Base 1.2.0 and earler allow remote attackers to execute arbitrary SQL commands via the (1) catid, (2) perpage, (3) ascdesc, and (4) orderlinks …
|
NVD-CWE-Other
|
CVE-2005-3939
|
2008-10-3 13:41 |
2005-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352459
|
- |
|
phpalbum.net
|
phpalbum
|
Directory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.
|
NVD-CWE-Other
|
CVE-2005-3948
|
2008-10-3 13:41 |
2005-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352460
|
- |
|
bedeng_psp
|
bedeng_psp
|
SQL injection vulnerability in Bedeng PSP 1.1 allows remote attackers to execute arbitrary SQL commands via the cwhere parameter to (1) index.php and (2) download.php, or (3) ckode parameter to baca.…
|
NVD-CWE-Other
|
CVE-2005-3953
|
2008-10-3 13:41 |
2005-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
