|
356031
|
- |
|
ilia_alshanetsky
|
fudforum
|
SQL injection vulnerabilities in FUDforum before 2.2.0 allow remote attackers to perform unauthorized database operations via (1) report.php, (2) selmsg.php, and (3) showposts.php.
|
NVD-CWE-Other
|
CVE-2002-1421
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356032
|
- |
|
ilia_alshanetsky
|
fudforum
|
admbrowse.php in FUDforum before 2.2.0 allows remote attackers to create or delete files via URL-encoded pathnames in the cur and dest parameters.
|
NVD-CWE-Other
|
CVE-2002-1422
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356033
|
- |
|
ilia_alshanetsky
|
fudforum
|
tmp_view.php in FUDforum before 2.2.0 allows remote attackers to read arbitrary files via an absolute pathname in the file parameter.
|
NVD-CWE-Other
|
CVE-2002-1423
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356034
|
- |
|
john_g._myers
|
mpack
|
Buffer overflow in munpack in mpack 1.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.
|
NVD-CWE-Other
|
CVE-2002-1424
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356035
|
- |
|
john_g._myers
|
mpack
|
Directory traversal vulnerability in munpack in mpack 1.5 and earlier allows remote attackers to create new files in the parent directory via a ../ (dot-dot) sequence in the filename to be extracted.
|
NVD-CWE-Other
|
CVE-2002-1425
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356036
|
- |
|
hp
|
procurve_switch_4000m
|
HP ProCurve Switch 4000M C.07.23 allows remote attackers to cause a denial of service (crash) via an SNMP write request containing 85 characters, possibly triggering a buffer overflow.
|
NVD-CWE-Other
|
CVE-2002-1426
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356037
|
- |
|
easy_scripts_archive
|
advanced_easy_homepage_creator
easy_homepage_creator
|
The print_html_to_file function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users.
|
NVD-CWE-Other
|
CVE-2002-1427
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356038
|
- |
|
dotproject
|
dotproject
|
index.php in dotProject 0.2.1.5 allows remote attackers to bypass authentication via a cookie or URL with the user_cookie parameter set to 1.
|
NVD-CWE-Other
|
CVE-2002-1428
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356039
|
- |
|
synthetic_reality
|
sympoll
|
Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters.
|
NVD-CWE-Other
|
CVE-2002-1430
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356040
|
- |
|
belkin
|
f5d5230-4_4-port_cable_dsl_gateway_router
|
Belkin F5D5230-4 4-Port Cable/DSL Gateway Router 1.20.000 modifies the source IP address of internal packets to that of the router's external interface when forwarding a request from an internal host…
|
NVD-CWE-Other
|
CVE-2002-1431
|
2008-09-6 05:30 |
2003-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
