|
345911
|
- |
|
dotbr
|
botbr
|
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1) exec.php3 or (2) system.php3.
|
CWE-20
Improper Input Validation
|
CVE-2003-1405
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345912
|
- |
|
adalis_infomatique
|
d_forum
|
PHP remote file inclusion vulnerability in D-Forum 1.00 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the (1) my_header parameter to header.php3 or (2) my_footer par…
|
CWE-94
Code Injection
|
CVE-2003-1406
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345913
|
- |
|
microsoft
|
windows_nt
|
Buffer overflow in cmd.exe in Windows NT 4.0 may allow local users to execute arbitrary code via a long pathname argument to the cd command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2003-1407
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345914
|
- |
|
lotus
|
domino_server
|
Lotus Domino Server 5.0 and 6.0 allows remote attackers to read the source code for files via an HTTP request with a filename with a trailing dot.
|
CWE-200
Information Exposure
|
CVE-2003-1408
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345915
|
- |
|
ej3
|
topo
|
TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in th…
|
CWE-200
Information Exposure
|
CVE-2003-1409
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345916
|
- |
|
isoca
|
cedric_email_reader
|
PHP remote file inclusion vulnerability in email.php (aka email.php3) in Cedric Email Reader 0.2 and 0.3 allows remote attackers to execute arbitrary PHP code via the cer_skin parameter.
|
CWE-94
Code Injection
|
CVE-2003-1410
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345917
|
- |
|
isoca
|
cedric_email_reader
|
PHP remote file inclusion vulnerability in emailreader_execute_on_each_page.inc.php in Cedric Email Reader 0.4 allows remote attackers to execute arbitrary PHP code via the emailreader_ini parameter.
|
CWE-94
Code Injection
|
CVE-2003-1411
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345918
|
- |
|
apple
|
darwin_streaming_server
quicktime_streaming_server
|
parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resultin…
|
CWE-22
Path Traversal
|
CVE-2003-1413
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345919
|
- |
|
apple
|
darwin_streaming_server
quicktime_streaming_server
|
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... (triple dot)…
|
CWE-22
Path Traversal
|
CVE-2003-1414
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345920
|
- |
|
visual_mining
|
netcharts_xbrl_server
|
NetCharts XBRL Server 4.0.0 allows remote attackers to obtain sensitive information via an HTTP request with an invalid chunked transfer encoding specification.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2003-1415
|
2017-07-29 10:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
