|
350111
|
- |
|
geovision
|
digital_surveillance_system
|
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote…
|
NVD-CWE-Other
|
CVE-2005-1552
|
2017-07-11 10:32 |
2005-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350112
|
- |
|
geovision
|
digital_surveillance_system
|
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0 uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via sniffing.
|
NVD-CWE-Other
|
CVE-2005-1553
|
2017-07-11 10:32 |
2005-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350113
|
- |
|
wowbb
|
wowbb_web_forum
|
SQL injection vulnerability in view_user.php in WowBB 1.6, 1.61, and 1.62 allows remote attackers to execute arbitrary SQL commands via the sort_by parameter.
|
NVD-CWE-Other
|
CVE-2005-1554
|
2017-07-11 10:32 |
2005-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350114
|
- |
|
macromedia
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in the JRun Web Server in ColdFusion MX 7.0 allows remote attackers to inject arbitrary script or HTML via the URL, which is not properly quoted in the result…
|
NVD-CWE-Other
|
CVE-2005-1555
|
2017-07-11 10:32 |
2005-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350115
|
- |
|
gamespy
|
gamespy_sdk_cd-key_validation_toolkit
|
Gamespy cd-key validation system allows remote attackers to cause a denial of service (cd-key already in use) by capturing and replaying a cd-key authorization session.
|
NVD-CWE-Other
|
CVE-2005-1556
|
2017-07-11 10:32 |
2005-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350116
|
- |
|
pixysoft
|
guestbook_pro
|
Multiple cross-site scripting (XSS) vulnerabilities in WebApp Guestbook PRO 3.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) content of a messa…
|
NVD-CWE-Other
|
CVE-2005-1557
|
2017-07-11 10:32 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350117
|
- |
|
neteyes
|
nexusway
|
The web module in Neteyes Nexusway allows remote attackers to bypass authentication and gain administrator privileges by setting the cyclone500_auth cookie.
|
NVD-CWE-Other
|
CVE-2005-1558
|
2017-07-11 10:32 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350118
|
- |
|
-
|
-
|
The web module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via hex-encoded shell metacharacters in the ip parameter for (1) nslookup.cgi or (2) ping.cgi.
|
NVD-CWE-Other
|
CVE-2005-1559
|
2017-07-11 10:32 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350119
|
- |
|
neteyes
|
nexusway
|
The SSH module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via shell metacharacters in arguments to certain commands, as demonstrated using ping and traceroute.
|
NVD-CWE-Other
|
CVE-2005-1560
|
2017-07-11 10:32 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350120
|
- |
|
maxwebportal
|
maxwebportal
|
Multiple cross-site scripting (XSS) vulnerabilities in post.asp in MaxWebPortal 1.3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mod, (2) M, or (3) type par…
|
NVD-CWE-Other
|
CVE-2005-1561
|
2017-07-11 10:32 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
