|
348321
|
- |
|
hiki
|
hiki
|
Cross-site scripting (XSS) vulnerability in Hiki 0.8.0 to 0.8.2 allows remote attackers to inject arbitrary web script or HTML via "missing pages" in which the page name is not properly escaped, a di…
|
NVD-CWE-Other
|
CVE-2005-2336
|
2008-11-11 14:51 |
2005-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348322
|
- |
|
sendmail
debian
|
sendmail
debian_linux
|
The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doubl…
|
NVD-CWE-Other
|
CVE-2003-0308
|
2008-11-11 14:29 |
2003-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348323
|
- |
|
eva-web
|
eva-web
|
An unspecified script in EVA-Web 2.1.2 and earlier, probably index.php, allows remote attackers to obtain the full path of the web server via invalid (1) perso or (2) aide parameters.
|
NVD-CWE-Other
|
CVE-2006-2690
|
2008-11-9 15:26 |
2006-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348324
|
- |
|
allaire
|
forums
|
Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address.
|
NVD-CWE-Other
|
CVE-2002-0108
|
2008-11-4 14:23 |
2002-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348325
|
- |
|
infopop
|
ultimate_bulletin_board
|
Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encod…
|
NVD-CWE-Other
|
CVE-2002-0118
|
2008-11-4 14:23 |
2002-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348326
|
- |
|
netgear
|
rp114
|
Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26, when configured to block traffic below port 1024, allows remote attackers to cause a denial of service (hang) via a port scan of the WAN port.
|
NVD-CWE-Other
|
CVE-2002-0127
|
2008-11-4 14:23 |
2002-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348327
|
- |
|
maelstrom
|
maelstrom_gpl
|
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.
|
NVD-CWE-Other
|
CVE-2002-0141
|
2008-11-4 14:23 |
2002-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348328
|
- |
|
awstats
|
awstats
|
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the config parameter. NOTE: this might be the sam…
|
NVD-CWE-Other
|
CVE-2006-1945
|
2008-11-3 15:18 |
2006-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348329
|
- |
|
leadhound_network
|
leadhound_full
leadhound_lite
|
Multiple SQL injection vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to execute arbitrary SQL commands via the (1) banner par…
|
NVD-CWE-Other
|
CVE-2006-2062
|
2008-11-3 15:18 |
2006-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348330
|
- |
|
leadhound_network
|
leadhound_full
leadhound_lite
|
Multiple cross-site scripting (XSS) vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to inject arbitrary web script or HTML via …
|
NVD-CWE-Other
|
CVE-2006-2063
|
2008-11-3 15:18 |
2006-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
