|
348951
|
- |
|
keyvan1
|
eimagepro
|
Multiple SQL injection vulnerabilities in EImagePro allow remote attackers to execute arbitrary SQL commands via the (1) CatID parameter to subList.asp, (2) SubjectID parameter to imageList.asp, or (…
|
NVD-CWE-Other
|
CVE-2006-2300
|
2017-07-20 10:31 |
2006-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348952
|
- |
|
ozzywork
|
galeri
|
SQL injection vulnerability in admin_default.asp in OzzyWork Galeri allows remote attackers to execute arbitrary SQL commands via the (1) Login or (2) password fields.
|
CWE-89
SQL Injection
|
CVE-2006-2301
|
2017-07-20 10:31 |
2006-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348953
|
- |
|
duware
|
dugallery
|
SQL injection vulnerability in admin_default.asp in DUGallery 2.x allows remote attackers to execute arbitrary SQL commands via the (1) Login or (2) password field.
|
NVD-CWE-Other
|
CVE-2006-2302
|
2017-07-20 10:31 |
2006-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348954
|
- |
|
jadu_limited
|
jadu_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Jadu CMS allow remote attackers to inject arbitrary web script or HTML via the (1) forename, (2) surname, (3) reg_email, (4) email_conf, (5) com…
|
NVD-CWE-Other
|
CVE-2006-2305
|
2017-07-20 10:31 |
2006-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348955
|
- |
|
keyvan_janghorbani
|
epublisherpro
|
Cross-site scripting (XSS) vulnerability in moreinfo.asp in EPublisherPro allows remote attackers to inject arbitrary web script or HTML via the title parameter. NOTE: the provenance of this informa…
|
NVD-CWE-Other
|
CVE-2006-2306
|
2017-07-20 10:31 |
2006-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348956
|
- |
|
cisco
|
application_velocity_system_3110
application_velocity_system_3120
|
The transparent proxy feature of the Cisco Application Velocity System (AVS) 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to prox…
|
NVD-CWE-Other
|
CVE-2006-2322
|
2017-07-20 10:31 |
2006-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348957
|
- |
|
onlyscript.info
|
online_universal_payment_system_script
|
Cross-site scripting (XSS) vulnerability in index.php in OnlyScript.info Online Universal Payment System Script allows remote attackers to inject arbitrary web script or HTML via the read parameter. …
|
NVD-CWE-Other
|
CVE-2006-2325
|
2017-07-20 10:31 |
2006-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348958
|
- |
|
onlyscript.info
|
online_universal_payment_system_script
|
Directory traversal vulnerability in index.php in OnlyScript.info Online Universal Payment System Script allows remote attackers to read arbitrary files via directory traversal sequences in the read …
|
NVD-CWE-Other
|
CVE-2006-2326
|
2017-07-20 10:31 |
2006-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348959
|
- |
|
evo-dev
|
evotopsites
evotopsites_pro
|
SQL injection vulnerability in index.php in evoTopsites 2.x and evoTopsites Pro 2.x allows remote attackers to execute arbitrary SQL commands via the (1) cat_id and (2) id parameters.
|
NVD-CWE-Other
|
CVE-2006-2339
|
2017-07-20 10:31 |
2006-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348960
|
- |
|
lethal_penguin
|
passmasterflex
passmasterflexplus
|
Cross-site scripting (XSS) vulnerability in PassMasterFlex and PassMasterFlexPlus (PassMasterFlex+) 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) username…
|
NVD-CWE-Other
|
CVE-2006-2340
|
2017-07-20 10:31 |
2006-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
