|
347751
|
- |
|
gnudip
|
gnudip
|
SQL injection vulnerability in cgi-bin/gnudip.cgi in GnuDIP 2.1.1 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from …
|
CWE-89
SQL Injection
|
CVE-2009-4720
|
2010-06-23 13:00 |
2010-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347752
|
- |
|
intersystems
|
cache_database
|
Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 through 5.0.5 allows remote attackers to "gain complete control" of a server.
|
NVD-CWE-noinfo
|
CVE-2003-1333
|
2010-06-23 13:00 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347753
|
- |
|
kai_blankenhorn_bitfolge
|
simple_and_nice_index_file
|
Cross-site scripting (XSS) vulnerability in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via unspecified …
|
CWE-79
Cross-site Scripting
|
CVE-2003-1334
|
2010-06-23 13:00 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347754
|
- |
|
kai_blankenhorn_bitfolge
|
simple_and_nice_index_file
|
Directory traversal vulnerability in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) before 1.2.5 allows remote attackers to download files from locations above the snif directory.
|
CWE-22
Path Traversal
|
CVE-2003-1335
|
2010-06-23 13:00 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347755
|
- |
|
aprelium_technologies
|
abyss_web_server
|
CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF sequ…
|
NVD-CWE-Other
|
CVE-2003-1338
|
2010-06-23 13:00 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347756
|
- |
|
aprelium_technologies
|
abyss_web_server
|
Per: http://cwe.mitre.org/data/definitions/93.html
'http://cwe.mitre.org/data/definitions/93.html'
|
NVD-CWE-Other
|
CVE-2003-1338
|
2010-06-23 13:00 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347757
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open…
|
CWE-287
Improper Authentication
|
CVE-2010-0521
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347758
|
- |
|
apple
|
mac_os_x_server
|
Server Admin in Apple Mac OS X Server 10.5.8 does not properly determine the privileges of users who had former membership in the admin group, which allows remote authenticated users to leverage this…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0522
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347759
|
- |
|
apple
|
mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.5.8 does not restrict the file types of uploaded files, which allows remote attackers to obtain sensitive information or possibly have unspecified other impact via a …
|
CWE-200
Information Exposure
|
CVE-2010-0523
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347760
|
- |
|
apple
|
mac_os_x_server
|
Per: http://support.apple.com/kb/HT4077
'This issue only affects Mac OS X Server systems, and does not affect versions 10.6 or later.'
|
CWE-200
Information Exposure
|
CVE-2010-0523
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
