|
352421
|
- |
|
abe_timmerman
|
zml.cgi
|
Directory traversal vulnerability in zml.cgi allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
|
NVD-CWE-Other
|
CVE-2001-1209
|
2009-04-30 13:08 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352422
|
- |
|
virtual_programming
|
vp-asp
|
SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password fields.
|
NVD-CWE-Other
|
CVE-2002-1919
|
2009-04-11 13:14 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352423
|
- |
|
easyscripts
|
easynews
|
easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which allows local users to obtain the passwords and gain access.
|
NVD-CWE-Other
|
CVE-2001-1527
|
2009-04-3 13:11 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352424
|
- |
|
newsscript.co.uk
|
newsscript
|
newsscript.pl for NewsScript allows remote attackers to gain privileges by setting the mode parameter to admin.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-0735
|
2009-04-3 13:00 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352425
|
- |
|
php_heaven
|
phpmychat
|
Multiple directory traversal vulnerabilities in admin.php3 in PHPMyChat 0.14.5 allow remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the (1) sheet and (2…
|
CWE-22
Path Traversal
|
CVE-2004-2717
|
2009-04-3 13:00 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352426
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 2.2.0rc3 and earlier allows remote attackers to execute arbitrary commands by inserting them into (1) the strCopyTableOK argument in tbl_copy.php, or (2) the strRenameTableOK argument in t…
|
NVD-CWE-Other
|
CVE-2001-1060
|
2009-04-3 13:00 |
2001-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352427
|
- |
|
darren_reed
|
ipfilter
|
IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that co…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-1978
|
2009-04-3 13:00 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352428
|
- |
|
watchguard
|
legacy_rssa
soho
vclass
|
WatchGuard SOHO products running firmware 5.1.6 and earlier, and Vclass/RSSA using 3.2 SP1 and earlier, allows remote attackers to bypass firewall rules by sending a PASV command string as the argume…
|
CWE-20
Improper Input Validation
|
CVE-2002-1979
|
2009-04-3 13:00 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352429
|
- |
|
zipgenius
|
zipgenius
|
Multiple stack-based buffer overflows in ZipGenius 5.5.1.468 and 6.0.2.1041, and other versions before 6.0.2.1050, allow remote attackers to execute arbitrary code via (1) a ZIP archive that contains…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3317
|
2009-03-25 13:00 |
2005-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352430
|
- |
|
openbsd
|
openssh
|
sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately closes the TCP connection after a root login attempt with the correct password, but leaves the connection open after an attempt wi…
|
CWE-16
Configuration
|
CVE-2004-2760
|
2009-01-29 14:37 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
