|
355971
|
- |
|
aquonics_scripting
|
aquonics_file_manager
|
Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP query string.
|
NVD-CWE-Other
|
CVE-2002-1926
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355972
|
- |
|
software602
|
602pro_lan_suite
|
602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension.
|
NVD-CWE-Other
|
CVE-2002-1928
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355973
|
- |
|
php_arena
|
pafiledb
|
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (…
|
NVD-CWE-Other
|
CVE-2002-1929
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355974
|
- |
|
an
|
an-httpd
|
Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.
|
NVD-CWE-Other
|
CVE-2002-1930
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355975
|
- |
|
php_arena
|
pafiledb
|
Cross-site scripting (XSS) vulnerability in PHP Arena paFileDB 1.1.3 and 2.1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the search string.
|
NVD-CWE-Other
|
CVE-2002-1931
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355976
|
- |
|
microsoft
|
windows_2000_terminal_services
|
The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is minimized, which could allow local users to gain access to the terminal s…
|
NVD-CWE-Other
|
CVE-2002-1933
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355977
|
- |
|
utstarcom
|
bas_1000
|
UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via (1) field account with a password of "*field", (2) guru account…
|
NVD-CWE-Other
|
CVE-2002-1936
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355978
|
- |
|
symantec
|
firewall_vpn_appliance_100
firewall_vpn_appliance_200
firewall_vpn_appliance_200r
|
Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address …
|
NVD-CWE-Other
|
CVE-2002-1937
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355979
|
- |
|
virgil
|
cgi_scanner
|
Virgil CGI Scanner 0.9 allows remote attackers to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters.
|
NVD-CWE-Other
|
CVE-2002-1938
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355980
|
- |
|
flashfxp
|
flashfxp
|
FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.
|
NVD-CWE-Other
|
CVE-2002-1939
|
2008-09-6 05:31 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
