|
349921
|
- |
|
emc
sun
|
legato_networker
solstice_backup
storedge_enterprise_backup_software
|
EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by mod…
|
NVD-CWE-Other
|
CVE-2005-0358
|
2017-07-11 10:32 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349922
|
- |
|
emc
sun
|
legato_networker
solstice_backup
storedge_enterprise_backup_software
|
The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmap_set and pmap_unset commands, which …
|
NVD-CWE-Other
|
CVE-2005-0359
|
2017-07-11 10:32 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349923
|
- |
|
chipmunk_scripts
|
cmscore
|
Multiple SQL injection vulnerabilities in CMScore allow remote attackers to execute arbitrary SQL commands via the (1) EntryID or (2) searchterm parameter to index.php, or (3) username parameter to a…
|
NVD-CWE-Other
|
CVE-2005-0368
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349924
|
- |
|
cyrus
openpkg
suse
conectiva
apple
redhat
|
sasl
openpkg
suse_cvsup
linux
mac_os_x
mac_os_x_server
fedora_core
suse_linux
|
Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to …
|
NVD-CWE-Other
|
CVE-2005-0373
|
2017-07-11 10:32 |
2004-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349925
|
- |
|
bitshifters
|
bitboard
|
Cross-site scripting (XSS) vulnerability in Bitboard 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via an [img] bbcode image tag with an event such as mouseover.
|
NVD-CWE-Other
|
CVE-2005-0374
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349926
|
- |
|
sergey_kiselev
|
sgallery
|
imageview.php in SGallery 1.01 allows remote attackers to obtain sensitive information via an HTTP request with (1) idalbum and (2) idimage unset, which reveals the installation path in an error mess…
|
NVD-CWE-Other
|
CVE-2005-0375
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349927
|
- |
|
sergey_kiselev
|
sgallery
|
PHP remote file inclusion vulnerability in SGallery 1.01 allows local and possibly remote attackers to execute arbitrary PHP code by modifying the DOCUMENT_ROOT parameter to reference a URL on a remo…
|
NVD-CWE-Other
|
CVE-2005-0376
|
2017-07-11 10:32 |
2005-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349928
|
- |
|
sergey_kiselev
|
sgallery
|
SQL injection vulnerability in imageview.php for SGallery 1.01 allows remote attackers to execute arbitrary SQL commands via the (1) idalbum or (2) idimage parameters.
|
NVD-CWE-Other
|
CVE-2005-0377
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349929
|
- |
|
horde
|
horde
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) group parameter to prefs.php or (2) url parameter to index.p…
|
NVD-CWE-Other
|
CVE-2005-0378
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349930
|
- |
|
zeroboard
|
zeroboard
|
Multiple directory traversal vulnerabilities in ZeroBoard 4.1pl5 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the _zb_path parameter to (1) _head.php or (2) outlog…
|
NVD-CWE-Other
|
CVE-2005-0379
|
2017-07-11 10:32 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
