|
352891
|
- |
|
joomla
|
joomla
|
Joomla! before 1.0.11 does not limit access to the Admin Popups functionality, which has unknown impact and attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-4475
|
2011-03-8 11:41 |
2006-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352892
|
- |
|
joomla
|
joomla
|
Multiple unspecified vulnerabilities in Joomla! before 1.0.11, related to "Injection Flaws," allow attackers to have an unknown impact via (1) globals.php, which uses include_once() instead of requir…
|
CWE-94
CWE-264
Code Injection
Permissions, Privileges, and Access Controls
|
CVE-2006-4476
|
2011-03-8 11:41 |
2006-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352893
|
- |
|
ibm
|
aix
|
Unspecified vulnerability in dtterm in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code with root privileges via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2006-4522
|
2011-03-8 11:41 |
2006-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352894
|
- |
|
vtiger
|
vtiger_crm
|
Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM 4.2.4, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) description parameter in unspe…
|
NVD-CWE-Other
|
CVE-2006-4587
|
2011-03-8 11:41 |
2006-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352895
|
- |
|
vtiger
|
vtiger_crm
|
vtiger CRM 4.2.4, and possibly earlier, allows remote attackers to bypass authentication and access administrative modules via a direct request to index.php with a modified module parameter, as demon…
|
NVD-CWE-Other
|
CVE-2006-4588
|
2011-03-8 11:41 |
2006-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352896
|
- |
|
bare_concept_media
|
pheap_cms
|
PHP remote file inclusion vulnerability in settings.php in Pheap 1.2, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the lpref parameter. NOTE: the provenan…
|
NVD-CWE-Other
|
CVE-2006-4621
|
2011-03-8 11:41 |
2006-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352897
|
- |
|
alwil
|
avast_antivirus
|
Heap-based buffer overflow in alwil avast! Anti-virus Engine before 4.7.869 allows remote attackers to execute arbitrary code via a crafted LHA file that contains extended headers with file and direc…
|
NVD-CWE-Other
|
CVE-2006-4626
|
2011-03-8 11:41 |
2006-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352898
|
- |
|
alwil
|
avast_antivirus
|
This vulnerability is addressed in the following product releases:
ALWIL, avast! antivirus, 4.7.869 (for Desktops)
ALWIL, avast! antivirus, Server 4.7.660 (for Servers)
|
NVD-CWE-Other
|
CVE-2006-4626
|
2011-03-8 11:41 |
2006-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352899
|
- |
|
uni-vert
|
phpleague
|
SQL injection vulnerability in consult/joueurs.php in Uni-Vert PhpLeague 0.82 and earlier allows remote attackers to execute arbitrary SQL commands via the id_joueur parameter. NOTE: the provenance …
|
NVD-CWE-Other
|
CVE-2006-4643
|
2011-03-8 11:41 |
2006-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352900
|
- |
|
ibm
|
director
|
Multiple unspecified vulnerabilities in IBM Director before 5.10 allow remote attackers to cause a denial of service (crash) via unspecified vectors involving (1) malformed WMI CIM server requests an…
|
NVD-CWE-Other
|
CVE-2006-4682
|
2011-03-8 11:41 |
2006-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
