|
350741
|
- |
|
bakbone
|
netvault
|
nvstatsmngr.exe process in BakBone NetVault 7.1 does not properly drop privileges before opening files, which allows local users to gain privileges via the Help menu.
|
NVD-CWE-Other
|
CVE-2005-1372
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350742
|
- |
|
dream4
|
koobi_cms
|
Multiple SQL injection vulnerabilities in index.php in Dream4 Koobi CMS 4.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) q or (2) p parameters.
|
NVD-CWE-Other
|
CVE-2005-1373
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350743
|
- |
|
claroline
|
claroline
|
Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote attackers to inject arbitrary web script or HTML via (1) exer…
|
NVD-CWE-Other
|
CVE-2005-1374
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350744
|
- |
|
claroline
|
claroline
|
Multiple SQL injection vulnerabilities in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote attackers to execute arbitrary SQL commands via (1) learningPath.php, (2) …
|
NVD-CWE-Other
|
CVE-2005-1375
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350745
|
- |
|
claroline
|
claroline
|
Multiple directory traversal vulnerabilities in (1) document.php or (2) insertMyDoc.php in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote project administrators to…
|
NVD-CWE-Other
|
CVE-2005-1376
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350746
|
- |
|
claroline
|
claroline
|
Multiple PHP remote file inclusion vulnerabilities in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote attackers to execute arbitrary PHP code via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-1377
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350747
|
- |
|
oxpus
|
phpbb_personal_notes_module
|
SQL injection vulnerability in posting_notes.php in the notes module for phpBB allows remote attackers to execute arbitrary SQL commands via the p parameter, which is used in the $post_id variable, a…
|
NVD-CWE-Other
|
CVE-2005-1378
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350748
|
- |
|
bea
|
weblogic_server
|
Cross-site scripting (XSS) vulnerability in BEA Admin Console 8.1 allows remote attackers to execute arbitrary web script or HTML via the server parameter to a JndiFramesetAction action.
|
NVD-CWE-Other
|
CVE-2005-1380
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350749
|
- |
|
oracle
|
application_server_web_cache
|
Multiple cross-site scripting (XSS) vulnerabilities in Oracle Webcache 9i allow remote attackers to inject arbitrary web script or HTML via the (1) cache_dump_file or (2) PartialPageErrorPage paramet…
|
NVD-CWE-Other
|
CVE-2005-1381
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350750
|
- |
|
oracle
|
application_server_web_cache
|
The webcacheadmin module in Oracle Webcache 9i allows remote attackers to corrupt arbitrary files via a full pathname in the cache_dump_file parameter.
|
NVD-CWE-Other
|
CVE-2005-1382
|
2017-07-11 10:32 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
