|
355151
|
- |
|
francisco_burzi
|
php-nuke
|
Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote attackers to inject arbitrary web script or HTML via hex-encoded XSS sequences…
|
NVD-CWE-Other
|
CVE-2004-2294
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355152
|
- |
|
novell
|
internet_messaging_system
netmail
|
Novell Internet Messaging System (NIMS) 2.6 and 3.0, and NetMail 3.1 and 3.5, is installed with a default NMAP authentication credential, which allows remote attackers to read and write mail store da…
|
NVD-CWE-Other
|
CVE-2004-2298
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355153
|
- |
|
mbedthis_software
|
mbedthis_appweb_http_server
|
Information leak in Mbedthis AppWeb HTTP server 1.0 through 1.1.2 allows remote attackers to obtain sensitive information via a user message that is generated when Mbedthis denies access.
|
NVD-CWE-Other
|
CVE-2004-2317
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355154
|
- |
|
openbsd
|
openbsd
|
OpenBSD 3.3 and 3.4 does not properly parse Accept and Deny rules without netmasks on big-endian 64-bit platforms such as SPARC64, which may allow remote attackers to bypass access restrictions.
|
NVD-CWE-Other
|
CVE-2004-2338
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355155
|
- |
|
symantec
|
enterprise_firewall
gateway_security
|
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additiona…
|
NVD-CWE-Other
|
CVE-2004-1754
|
2008-09-6 05:42 |
2004-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355156
|
- |
|
skype_technologies
|
skype
|
A "range check error" in Skype for Windows before 0.98.0.28 allows local and remote attackers to cause a denial of service (application crash) via long command line arguments or a long callto:// URL,…
|
CWE-20
Improper Input Validation
|
CVE-2004-1777
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355157
|
- |
|
info_touch
|
surfnet
|
Info Touch Surfnet kiosk allows local users to deposit extra time into Internet kiosk accounts via repeated authentication attempts.
|
NVD-CWE-Other
|
CVE-2004-1780
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355158
|
- |
|
info_touch
|
surfnet
|
Info Touch Surfnet kiosk allows local users to crash Surfnet and access the underlying operating system via the CMD_CREDITCARD_CHARGE command.
|
NVD-CWE-Other
|
CVE-2004-1781
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355159
|
- |
|
-
|
-
|
Directory traversal vulnerability in Net2Soft Flash FTP Server 1.0 allows remote attackers to read and create arbitrary files via a /.. (slash dot dot).
|
NVD-CWE-Other
|
CVE-2004-1783
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355160
|
- |
|
invision_power_services
|
invision_board
|
SQL injection vulnerability in calendar.php for Invision Power Board 1.3 allows remote attackers to execute arbitrary SQL commands via the m parameter, which sets the $this->chosen_month variable.
|
NVD-CWE-Other
|
CVE-2004-1785
|
2008-09-6 05:42 |
2004-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
