|
347181
|
- |
|
3com
|
3cdaemon
|
The FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to gain sensitive information via a cd command that contains an MS-DOS device name, which reveals the installation path in an …
|
NVD-CWE-Other
|
CVE-2005-0278
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347182
|
- |
|
jowood_productions
|
soldner_secret_wars
|
Soldner Secret Wars 30830 and earlier does not properly handle the "message too long" socket error, which allows remote attackers to cause a denial of service (socket termination) via a long UDP pack…
|
NVD-CWE-Other
|
CVE-2005-0279
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347183
|
- |
|
jowood_productions
|
soldner_secret_wars
|
Format string vulnerability in Soldner Secret Wars 30830 and earlier allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifie…
|
NVD-CWE-Other
|
CVE-2005-0280
|
2017-07-11 10:32 |
2005-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347184
|
- |
|
jowood_productions
|
soldner_secret_wars
|
Cross-site scripting (XSS) vulnerability in the web interface in Soldner Secret Wars 30830 allows remote attackers to inject arbitrary web script or HTML via a user message, which is not filtered or …
|
NVD-CWE-Other
|
CVE-2005-0281
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347185
|
- |
|
mybulletinboard
|
mybulletinboard
|
SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the uid parameter.
|
NVD-CWE-Other
|
CVE-2005-0282
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347186
|
- |
|
david_barrett
|
qwikiwiki
|
Directory traversal vulnerability in index.php in QwikiWiki allows remote attackers to read arbitrary files via a .. (dot dot) and a %00 at the end of the filename in the page parameter.
|
NVD-CWE-Other
|
CVE-2005-0283
|
2017-07-11 10:32 |
2005-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347187
|
- |
|
woltlab
|
burning_book
|
SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the user-agent paramet…
|
NVD-CWE-Other
|
CVE-2005-0284
|
2017-07-11 10:32 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347188
|
- |
|
bottomline
|
webseries_payment_application
|
Webseries Payment Application does not properly restrict privileged operations, which allows remote authenticated users to gain privileges by directly accessing certain URLs.
|
NVD-CWE-Other
|
CVE-2005-0285
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347189
|
- |
|
emotion
|
mediapartner_web_server
|
eMotion MediaPartner Web Server 5.0 and 5.1 allows remote attackers to obtain sensitive information via an HTTP request for a .bhtml file that contains a (1) . (dot) or (2) + (plus sign) at the end, …
|
NVD-CWE-Other
|
CVE-2005-0286
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347190
|
- |
|
bottomline
|
webseries_payment_application
|
Bottomline Webseries Payment Application allows remote attackers to read arbitrary files on the network via a report template with modified ReportPath or ReportName values.
|
NVD-CWE-Other
|
CVE-2005-0287
|
2017-07-11 10:32 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
