|
347571
|
- |
|
sven-ove_bjerkan
|
downloadprotect
|
Directory traversal vulnerability in DownloadProtect before 1.0.3 allows remote attackers to read files above the download folder.
|
NVD-CWE-Other
|
CVE-2005-2248
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347572
|
- |
|
jinzora
|
jinzora
|
Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact and attack vectors, possibly involving a PHP file inclusion vulnerability.
|
NVD-CWE-Other
|
CVE-2005-2249
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347573
|
- |
|
nokia
|
affix
|
Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary code via a long filename in an OBEX file share.
|
NVD-CWE-Other
|
CVE-2005-2250
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347574
|
- |
|
gianluca_baldo
|
phpauction
|
PhpAuction 2.5 allows remote attackers to bypass authentication and gain privileges as another user by setting the PHPAUCTION_RM_ID cookie to the user ID.
|
NVD-CWE-Other
|
CVE-2005-2252
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347575
|
- |
|
gianluca_baldo
|
phpauction
|
SQL injection vulnerability in PhpAuction 2.5 allow remote attackers to modify SQL queries via the category parameter to adsearch.php. NOTE: there is evidence that viewnews.php may not be part of the…
|
NVD-CWE-Other
|
CVE-2005-2253
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347576
|
- |
|
gianluca_baldo
|
phpauction
|
Directory traversal vulnerability in PhpAuction 2.5 allows remote attackers to read arbitrary files, include local PHP files, or obtain sensitive path information via ".." sequences in the lan param…
|
NVD-CWE-Other
|
CVE-2005-2255
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347577
|
- |
|
phppgadmin
|
phppgadmin
|
Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 allows remote attackers to access arbitrary files via "%2e%2e%2f" (encoded dot dot) sequences in the formLanguage parameter.
|
NVD-CWE-Other
|
CVE-2005-2256
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347578
|
- |
|
squitosoft
|
squito_gallery
|
PHP remote file inclusion vulnerability in photolist.inc.php in Squito Gallery 1.33 allows remote attackers to execute arbitrary code via the photoroot parameter.
|
NVD-CWE-Other
|
CVE-2005-2258
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347579
|
- |
|
usanet_creations
|
domain_name_auction
makebid_auction_deluxe
makebid_auction_standard
makebid_reverse_auction
standard_classified_ads
usanet_shopping_mall
|
The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Soft…
|
NVD-CWE-Other
|
CVE-2005-2259
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347580
|
- |
|
alexander_clauss
|
icab
|
iCab 2.9.8 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing att…
|
NVD-CWE-Other
|
CVE-2005-2271
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
