|
345851
|
- |
|
phex
|
phex
|
Phex before 2.8.6 allows remote attackers to cause a denial of service (application hang) by initiating multiple chat requests to a single user and then logging off.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-2095
|
2017-07-20 10:31 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345852
|
- |
|
kmail
|
kmail
|
Multiple cross-site scripting (XSS) vulnerabilities in Kamgaing Email System (kmail) 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) d parameter to main.php,…
|
NVD-CWE-Other
|
CVE-2006-2104
|
2017-07-20 10:31 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345853
|
- |
|
edgewall_software
|
trac
|
Cross-site scripting (XSS) vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro…
|
NVD-CWE-Other
|
CVE-2006-2106
|
2017-07-20 10:31 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345854
|
- |
|
virtual_private_server
|
vserver
|
Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabilities (ccaps) that allow local guest users to perform operations that were only in…
|
NVD-CWE-Other
|
CVE-2006-2110
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345855
|
- |
|
virtual_private_server
|
vserver
|
This vulnerability is addressed in the following product releases:
Virtual Private Server, Vserver, 2.0.2-rc18
Virtual Private Server, Vserver, 2.1.1-rc18
|
NVD-CWE-Other
|
CVE-2006-2110
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345856
|
- |
|
network_administration_visualized
|
network_administration_visualized
|
Multiple SQL injection vulnerabilities in the report interface in Network Administration Visualized (NAV) before 3.0.1 allow remote attackers to execute arbitrary SQL commands via unknown vectors.
|
NVD-CWE-Other
|
CVE-2006-2123
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345857
|
- |
|
turnkey_solutions
|
sunshop_shopping_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in SunShop 3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) prevaction, (2) previd, (3) prevstart, (4) ite…
|
NVD-CWE-Other
|
CVE-2006-2124
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345858
|
- |
|
avalon_ltd
|
maxtrade
|
SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categori and (2) stranica parameters.
|
NVD-CWE-Other
|
CVE-2006-2126
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345859
|
- |
|
deltascripts
|
pro_publish
|
Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.
|
NVD-CWE-Other
|
CVE-2006-2129
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345860
|
- |
|
advanced_poll
|
advanced_poll
|
SQL injection vulnerability in include/class_poll.php in Advanced Poll 2.0.4 allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header.
|
NVD-CWE-Other
|
CVE-2006-2130
|
2017-07-20 10:31 |
2006-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
