|
352941
|
- |
|
dokeos
|
dokeos
|
Multiple directory traversal vulnerabilities in Dokeos 1.6 and earlier, and possibly Claroline, allow remote attackers to (1) delete arbitrary files or directories via the delete parameter to claroli…
|
NVD-CWE-Other
|
CVE-2005-2598
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352942
|
- |
|
ilia_alshanetsky
|
fudforum
|
FUDForum 2.6.15 with "Tree View" enabled, as used in other products such as phpgroupware and egroupware, allows remote attackers to read private posts via a modified mid parameter.
|
NVD-CWE-Other
|
CVE-2005-2600
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352943
|
- |
|
midicart_software
|
midicart_php_shopping_cart
|
SQL injection vulnerability in MidiCart allows remote attackers to execute arbitrary SQL commands via the code_no parameter to (1) Item_Show.asp or (2) search_list.asp.
|
NVD-CWE-Other
|
CVE-2005-2601
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352944
|
- |
|
mozilla
|
firefox
thunderbird
|
Mozilla Thunderbird 1.0 and Firefox 1.0.6 allows remote attackers to obfuscate URIs via a long URI, which causes the address bar to go blank and could facilitate phishing attacks.
|
NVD-CWE-Other
|
CVE-2005-2602
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352945
|
- |
|
omnipilot_software
|
lasso_professional_server
|
Unknown vulnerability in Lasso Professional Server8.0.4 and 8.0.5 allows attackers to bypass authentication, related to [Auth] tags.
|
NVD-CWE-Other
|
CVE-2005-2605
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352946
|
- |
|
phpsimplicity
|
simplicity_of_upload
|
PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a …
|
NVD-CWE-Other
|
CVE-2005-2607
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352947
|
- |
|
phpsimplicity
|
simplicity_of_upload
|
Download new version of program at http://www.phpsimplicity.com/scripts.php?id=3.
|
NVD-CWE-Other
|
CVE-2005-2607
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352948
|
- |
|
safehtml
|
safehtml
|
SafeHTML before 1.3.5 does not properly filter script in UTF-7 and CSS comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks in vulnerable applications that use SafeHT…
|
NVD-CWE-Other
|
CVE-2005-2608
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352949
|
- |
|
vegadns
|
vegadns
|
index.php in VegaDNS 0.8.1, 0.9.8, and possibly other versions, allows remote attackers to obtain the full server path via an invalid VDNS_Sessid parameter.
|
NVD-CWE-Other
|
CVE-2005-2609
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352950
|
- |
|
vegadns
|
vegadns
|
Cross-site scripting (XSS) vulnerability in index.php in VegaDNS 0.8.1, 0.9.8, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
NVD-CWE-Other
|
CVE-2005-2610
|
2008-09-6 05:52 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
