|
347451
|
- |
|
apple
|
mac_os_x_server
|
Perl in Apple Mac OS X Server 10.3.9 does not properly drop privileges when using the "$<" variable to set uid, which allows attackers to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4217
|
2017-07-20 10:29 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347452
|
- |
|
-
|
-
|
Cross-site scripting (XSS) vulnerability in auction.pl in EveryAuction 1.53 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter. NOTE: the prove…
|
NVD-CWE-Other
|
CVE-2005-4229
|
2017-07-20 10:29 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347453
|
- |
|
torrential
|
torrential
|
Cross-site scripting (XSS) vulnerability in getdox.php in Torrential 1.2 allows remote attackers to inject arbitrary web script or HTML via the URL. NOTE: this might be resultant from CVE-2005-4160.
|
NVD-CWE-Other
|
CVE-2005-4253
|
2017-07-20 10:29 |
2005-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347454
|
- |
|
aspbb
|
aspbb
|
Multiple SQL injection vulnerabilities in ASPBB 0.4 allow remote attackers to execute arbitrary SQL commands via the (1) TID parameter in topic.asp, (2) FORUM_ID parameter in forum.asp, and (3) PROFI…
|
NVD-CWE-Other
|
CVE-2005-4259
|
2017-07-20 10:29 |
2005-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347455
|
- |
|
cisco
|
catalyst
catalyst_1200_series
catalyst_1900_series
catalyst_2800_series
catalyst_2820
catalyst_2900
catalyst_2901
catalyst_2902
catalyst_2920
catalyst_2926
catalyst_2926…
|
Unspecified Cisco Catalyst Switches allow remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (…
|
NVD-CWE-Other
|
CVE-2005-4258
|
2017-07-20 10:29 |
2005-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347456
|
- |
|
edgewall_software
|
trac
|
Cross-site scripting (XSS) vulnerability in Edgewall Trac 0.9, 0.9.1, and 0.9.2 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly sanitized before it i…
|
NVD-CWE-Other
|
CVE-2005-4305
|
2017-07-20 10:29 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347457
|
- |
|
scriptscenter
|
ezupload_pro
|
SQL injection vulnerability in ezUpload Pro 2.2 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified search module parameters.
|
NVD-CWE-Other
|
CVE-2005-4309
|
2017-07-20 10:29 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347458
|
- |
|
almondsoft
|
almond_personals
|
SQL injection vulnerability in index.php in AlmondSoft Almond Personals 4.05 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
NVD-CWE-Other
|
CVE-2005-4313
|
2017-07-20 10:29 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347459
|
- |
|
hitachi
|
cosminexus_collaboration_portal
groupmax_collaboration_portal
groupmax_collaboration_web_client
|
Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration…
|
NVD-CWE-Other
|
CVE-2005-4322
|
2017-07-20 10:29 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347460
|
- |
|
hitachi
|
cosminexus_collaboration_portal
groupmax_collaboration_portal
groupmax_collaboration_web_client
|
Unspecified vulnerability in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration Web Client 07-00 through …
|
NVD-CWE-Other
|
CVE-2005-4323
|
2017-07-20 10:29 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
