|
355371
|
- |
|
comersus_open_technologies
|
comersus_backoffice_lite
comersus_backoffice_plus
|
Cross-site scripting (XSS) vulnerability in Comersus BackOffice allows remote attackers to inject arbitrary web script or HTML via the error parameter to comersus_backoffice_supportError.asp. NOTE: …
|
NVD-CWE-Other
|
CVE-2005-3397
|
2008-09-6 05:54 |
2005-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355372
|
- |
|
subdreamer
|
subdreamer
|
Multiple SQL injection vulnerabilities in Subdreamer 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the loginusername parameter or (2) cookies to (a) subdreamer.php, (b) ipb2.…
|
NVD-CWE-Other
|
CVE-2005-3423
|
2008-09-6 05:54 |
2005-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355373
|
- |
|
gnu
|
gnump3d
|
Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2005-3424.
|
NVD-CWE-Other
|
CVE-2005-3425
|
2008-09-6 05:54 |
2005-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355374
|
- |
|
cisco
|
content_services_switch_11500
|
Cisco CSS 11500 Content Services Switch (CSS) with SSL termination services allows remote attackers to cause a denial of service (memory corruption and device reload) via a malformed client certifica…
|
NVD-CWE-Other
|
CVE-2005-3426
|
2008-09-6 05:54 |
2005-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355375
|
- |
|
sony
|
first4internet_xcp_content_management
|
The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that …
|
NVD-CWE-Other
|
CVE-2005-3474
|
2008-09-6 05:54 |
2005-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355376
|
- |
|
invision_power_services
|
invision_gallery
|
Multiple interpretation error in the image upload handling code in Invision Gallery 2.0.3 allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML or script in an image whose ty…
|
NVD-CWE-Other
|
CVE-2005-3477
|
2008-09-6 05:54 |
2005-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355377
|
- |
|
ringtail
|
casebook
|
Cross-site scripting (XSS) vulnerability in login.asp in Ringtail CaseBook 6.1.0 allows remote attackers to inject arbitrary web script or HTML via the users parameter.
|
NVD-CWE-Other
|
CVE-2005-3479
|
2008-09-6 05:54 |
2005-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355378
|
- |
|
ringtail
|
casebook
|
login.asp in Ringtail CaseBook 6.1.0 displays different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernames.
|
NVD-CWE-Other
|
CVE-2005-3480
|
2008-09-6 05:54 |
2005-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355379
|
- |
|
ar-blog
|
ar-blog
|
Cross-site scripting (XSS) vulnerability in Ar-blog 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog comment.
|
NVD-CWE-Other
|
CVE-2005-3494
|
2008-09-6 05:54 |
2005-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355380
|
- |
|
ar-blog
|
ar-blog
|
Ar-blog 5.2 and earlier allows remote attackers to bypass authentication by modifying cookies.
|
NVD-CWE-Other
|
CVE-2005-3495
|
2008-09-6 05:54 |
2005-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
