|
357471
|
- |
|
fuzzymonkey
|
myclassifieds
|
SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute arbitrary SQL commands via the email parameter.
|
CWE-89
SQL Injection
|
CVE-2003-1520
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357472
|
- |
|
sun
|
java_plug-in
|
Sun Java Plug-In 1.4 through 1.4.2_02 allows remote attackers to repeatedly access the floppy drive via the createXmlDocument method in the org.apache.crimson.tree.XmlDocument class, which violates t…
|
NVD-CWE-Other
|
CVE-2003-1521
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357473
|
- |
|
francisco_burzi
|
php-nuke
|
PHP-Nuke 7.0 allows remote attackers to obtain the installation path via certain characters such as (1) ", (2) ', or (3) > in the search field, which reveals the path in an error message.
|
CWE-200
Information Exposure
|
CVE-2003-1526
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357474
|
- |
|
ibm
iss
|
internet_security_systems_blackice_defender
blackice_server_protection
|
BlackICE Defender 2.9.cap and Server Protection 3.5.cdf, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packet…
|
NVD-CWE-Other
|
CVE-2003-1527
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357475
|
- |
|
postnuke_software_foundation
|
postnuke
|
Directory traversal vulnerability in PostNuke 0.723 and earlier allows remote attackers to include arbitrary files named theme.php via the theme parameter to index.php.
|
CWE-22
Path Traversal
|
CVE-2003-1537
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357476
|
- |
|
suse
|
suse_linux_openexchange_server
office_server
suse_linux
|
susehelp in SuSE Linux 8.1, Enterprise Server 8, Office Server, and Openexchange Server 4 does not properly filter shell metacharacters, which allows remote attackers to execute arbitrary commands vi…
|
CWE-20
Improper Input Validation
|
CVE-2003-1538
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357477
|
- |
|
onedotoh
|
simple_file_manager
|
Cross-site scripting (XSS) vulnerability in ONEdotOH Simple File Manager (SFM) before 0.21 allows remote attackers to inject arbitrary web script or HTML via (1) file names and (2) directory names.
|
CWE-79
Cross-site Scripting
|
CVE-2003-1539
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357478
|
- |
|
ondrej_jombik
|
phpwebfilemanager
|
Directory traversal vulnerability in plugins/file.php in phpWebFileManager before 0.4.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the fm_path parameter.
|
CWE-22
Path Traversal
|
CVE-2003-1542
|
2008-09-6 05:37 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357479
|
- |
|
ssh
|
secure_shell
|
SSH Secure Shell before 3.2.9 allows remote attackers to cause a denial of service via malformed BER/DER packets.
|
NVD-CWE-Other
|
CVE-2003-1119
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357480
|
- |
|
sun
|
one_directory_server
|
Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service (service halt).
|
NVD-CWE-Other
|
CVE-2003-1125
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
