|
352331
|
- |
|
usanet_creations
|
domain_name_auction
makebid_auction_deluxe
makebid_auction_standard
makebid_reverse_auction
standard_classified_ads
usanet_shopping_mall
|
The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Soft…
|
NVD-CWE-Other
|
CVE-2005-2259
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352332
|
- |
|
alexander_clauss
|
icab
|
iCab 2.9.8 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing att…
|
NVD-CWE-Other
|
CVE-2005-2271
|
2008-09-6 05:51 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352333
|
- |
|
esi_products
|
webeoc
|
Multiple cross-site scripting (XSS) vulnerabilities in WebEOC before 6.0.2 allow remote attackers to inject arbitrary web script and HTML via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-2282
|
2008-09-6 05:51 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352334
|
- |
|
esi_products
|
webeoc
|
WebEOC before 6.0.2 does not properly restrict the size of an uploaded file, which allows remote authenticated users to cause a denial of service (system and database resource consumption) via a larg…
|
NVD-CWE-Other
|
CVE-2005-2283
|
2008-09-6 05:51 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352335
|
- |
|
esi_products
|
webeoc
|
Multiple SQL injection vulnerabilities in WebEOC before 6.0.2 allow remote attackers to modify SQL statements via unknown attack vectors.
|
NVD-CWE-Other
|
CVE-2005-2284
|
2008-09-6 05:51 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352336
|
- |
|
esi_products
|
webeoc
|
WebEOC before 6.0.2 stores sensitive information in locations such as URIs, web pages, and configuration files, which allows remote attackers to obtain information such as Usernames, Passwords, Emerg…
|
NVD-CWE-Other
|
CVE-2005-2285
|
2008-09-6 05:51 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352337
|
- |
|
esi_products
|
webeoc
|
WebEOC before 6.0.2 does not properly check user authorization, which allows remote attackers to gain privileges via a direct request to a resource.
|
NVD-CWE-Other
|
CVE-2005-2286
|
2008-09-6 05:51 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352338
|
- |
|
dg
|
remote_control_server
|
DG Remote Control Server 1.6.2 allows remote attackers to cause a denial of service (crash or CPU consumption) and possibly execute arbitrary code via a long message to TCP port 1071 or 1073, possibl…
|
NVD-CWE-Other
|
CVE-2005-2305
|
2008-09-6 05:51 |
2005-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352339
|
- |
|
macromedia
|
coldfusion
jrun
|
Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes JRun to assign a duplicate authentication token to multiple sessions, which could allow authenticated u…
|
NVD-CWE-Other
|
CVE-2005-2306
|
2008-09-6 05:51 |
2005-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352340
|
- |
|
microsoft
|
ie
|
The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via certain crafted JPEG images, as…
|
NVD-CWE-Other
|
CVE-2005-2308
|
2008-09-6 05:51 |
2005-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
