|
349831
|
- |
|
phpoutsourcing
|
zorum
|
Zorum 3.5 allows remote attackers to obtain the full installation path via direct requests to (1) gorum/notification.php, (2) user.php, (3) attach.php, (4) blacklist.php, (5) zorum/forum.php, (6) glo…
|
NVD-CWE-Other
|
CVE-2005-2652
|
2017-07-11 10:32 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349832
|
- |
|
bbcaffe
|
bbcaffe
|
Cross-site scripting (XSS) vulnerability in BBCaffe 2.0 allows remote attackers to inject arbitrary web script or HTML via e-mail data in a message.
|
NVD-CWE-Other
|
CVE-2005-2653
|
2017-07-11 10:32 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349833
|
- |
|
common-lisp-controller
|
common-lisp-controller
|
Unknown vulnerability in common-lisp-controller 4.18 and earlier allows local users to gain privileges by compiling arbitrary code in the cache directory, which is executed by another user if the use…
|
NVD-CWE-Other
|
CVE-2005-2657
|
2017-07-11 10:32 |
2005-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349834
|
- |
|
masqmail
|
masqmail
|
masqmail before 0.2.18 allows remote attackers to execute arbitrary commands via crafted e-mail addresses that are not properly sanitized when creating a failed delivery message.
|
NVD-CWE-Other
|
CVE-2005-2662
|
2017-07-11 10:32 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349835
|
- |
|
masqmail
|
masqmail
|
masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file.
|
NVD-CWE-Other
|
CVE-2005-2663
|
2017-07-11 10:32 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349836
|
- |
|
savewebportal
|
savewebportal
|
PHP remote file inclusion vulnerability in SaveWebPortal 3.4 allows remote attackers to execute arbitrary PHP code via the (1) SITE_Path parameter to menu_dx.php or (2) CONTENTS_Dir parameter to menu…
|
NVD-CWE-Other
|
CVE-2005-2687
|
2017-07-11 10:32 |
2005-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349837
|
- |
|
winace
|
winace
|
Buffer overflow in WinAce 2.6.0.5, and possibly earlier versions, allows remote attackers to execute arbitrary code via a temporary (.tmp) file that contains an entry with a long file name.
|
NVD-CWE-Other
|
CVE-2005-2694
|
2017-07-11 10:32 |
2005-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349838
|
- |
|
cisco
|
ciscoworks_management_center_for_ids_sensors
ciscoworks_monitoring_center_for_security
|
Unspecified vulnerability in the SSL certificate checking functionality in Cisco CiscoWorks Management Center for IDS Sensors (IDSMC) 2.0 and 2.1, and Monitoring Center for Security (Security Monitor…
|
NVD-CWE-Other
|
CVE-2005-2695
|
2017-07-11 10:32 |
2005-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349839
|
- |
|
nelogic_technologies
|
nephp_publisher_enterprise
|
Cross-site scripting (XSS) vulnerability in browse.php in Nephp Publisher Enterprise 3.04 allows remote attackers to inject arbitrary web script or HTML via a hex-encoded keywords parameter.
|
NVD-CWE-Other
|
CVE-2005-2698
|
2017-07-11 10:32 |
2005-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349840
|
- |
|
iss
|
blackice_agent_server
blackice_pc_protection
blackice_server_protection
realsecure_desktop
|
ISS BlackIce 3.6, as used in multiple products including BlackICE PC Protection, Server Protection, Agent for Server, and RealSecure Desktop 3.6 and 7.0, does not drop privileges before launching hel…
|
NVD-CWE-Other
|
CVE-2005-2711
|
2017-07-11 10:32 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
