|
345771
|
- |
|
sleeperchat
|
sleeperchat
|
SleeperChat 0.3f and earlier allows remote attackers to bypass authentication and create new entries via the txt parameter to (1) chat_no.php and (2) chat_if.php.
|
CWE-287
Improper Authentication
|
CVE-2006-0416
|
2017-07-20 10:29 |
2006-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345772
|
- |
|
bea
|
weblogic_server
|
By design, BEA WebLogic Server and WebLogic Express 7.0 and 6.1, when creating multiple domains from the same WebLogic instance on the same machine, allows administrators of any created domain to acc…
|
NVD-CWE-Other
|
CVE-2006-0421
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345773
|
- |
|
bea
|
weblogic_server
|
Multiple unspecified vulnerabilities in BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allow remote attackers to access MBean attributes or cause an un…
|
NVD-CWE-Other
|
CVE-2006-0422
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345774
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allows remote authenticated guest users to read the server log and obtain sensitive configuration inform…
|
NVD-CWE-Other
|
CVE-2006-0424
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345775
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 through SP4, when configuration auditing is enabled and a password change occurs, stores the old and new passwords in cleartext in the DefaultAuditRecorde…
|
NVD-CWE-Other
|
CVE-2006-0426
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345776
|
- |
|
bea
|
weblogic_server
|
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0 and 8.1 through SP5 allows malicious EJBs or servlet applications to decrypt system passwords, possibly by accessing function…
|
NVD-CWE-Other
|
CVE-2006-0427
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345777
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 9.0 causes new security providers to appear active even if they have not been activated by a server reboot, which could cause an administrator to perform inap…
|
NVD-CWE-Other
|
CVE-2006-0429
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345778
|
- |
|
bea
|
weblogic_server
|
Certain configurations of BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 through SP6, when connection filters are enabled, cause the server to run more slowly, which makes it …
|
NVD-CWE-Other
|
CVE-2006-0430
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345779
|
- |
|
bea
|
weblogic_server
|
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 SP5 allows untrusted applications to obtain the server's SSL identity via unknown attack vectors.
|
NVD-CWE-Other
|
CVE-2006-0431
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345780
|
- |
|
bea
|
weblogic_server
|
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to…
|
NVD-CWE-Other
|
CVE-2006-0432
|
2017-07-20 10:29 |
2006-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
