|
345741
|
- |
|
iplanet
|
iplanet_web_server
|
Buffer overflow in iPlanet Web Server (iWS) Enterprise Edition 4.1, service packs 3 through 7, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long meth…
|
NVD-CWE-Other
|
CVE-2001-0747
|
2017-08-17 10:29 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345742
|
- |
|
analogx
|
simpleserver_www
|
Directory traversal vulnerability in SimpleServer:WWW 1.13 and earlier allows remote attackers to execute arbitrary programs via encoded ../ ("%2E%2E%2F%") sequences in a request to the cgi-bin/ dire…
|
CWE-22
Path Traversal
|
CVE-2001-1586
|
2017-08-17 10:29 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345743
|
- |
|
microsoft
|
windows_xp
|
Microsoft Windows XP with Fast User Switching (FUS) enabled does not remove the "show processes from all users" privilege when the user is removed from the administrator group, which allows that user…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2283
|
2017-08-17 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345744
|
- |
|
softbiz
|
image_gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Image Gallery (Photo Gallery) allow remote attackers to inject arbitrary web script or HTML via the (1) latest parameter to (a) index.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3511
|
2017-08-8 10:31 |
2008-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345745
|
- |
|
cups
|
cups
|
Multiple stack-based buffer overflows in the phpcups PHP module for CUPS 1.1.23rc1 might allow context-dependent attackers to execute arbitrary code via vectors that result in long function parameter…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-4873
|
2017-08-8 10:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345746
|
- |
|
mozilla
|
mozilla
|
The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE method, which allows remote attackers to obtain (1) proxy authentication passwords via a request with a "Max-Forwards: 0" header or …
|
CWE-94
Code Injection
|
CVE-2005-4874
|
2017-08-8 10:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345747
|
- |
|
typo3
|
typo3
|
TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive information via a direct request to misc/phpcheck/, which invokes the phpinfo function and prints values of unspecified environment…
|
CWE-200
Information Exposure
|
CVE-2005-4875
|
2017-08-8 10:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345748
|
- |
|
ignite_realtime
|
openfire
|
Cross-site scripting (XSS) vulnerability in the login form (login.jsp) of the admin console in Openfire (formerly Wildfire) 2.2.2, and possibly other versions before 2.3.0 Beta 2, allows remote attac…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4876
|
2017-08-8 10:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345749
|
- |
|
ignite_realtime
|
openfire
|
Cross-site scripting (XSS) vulnerability in the login form (login.jsp) of the admin console in Openfire (formerly Wildfire) 2.3.0 Beta 2 allows remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4877
|
2017-08-8 10:29 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345750
|
- |
|
sun
|
sunforum
|
Multiple unspecified vulnerabilities in the H.323 protocol implementation for Sun SunForum 3.2 and 3D 1.0 allow remote attackers to cause a denial of service (segmentation fault and process crash), a…
|
NVD-CWE-noinfo
|
CVE-2004-2758
|
2017-08-8 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
