|
349321
|
- |
|
oracle
|
http_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote attackers to execute arbitrary script as other users via the (1) action, (2) username, …
|
NVD-CWE-Other
|
CVE-2004-2115
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349322
|
- |
|
reptile_web_server
|
reptile_web_server
|
Reptile Web Server allows remote attackers to cause a denial of service (CPU consumption) via multiple incomplete GET requests without the HTTP version.
|
NVD-CWE-Other
|
CVE-2004-2120
|
2017-07-11 10:31 |
2004-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349323
|
- |
|
borland_software
|
web_server_for_corel_paradox
|
Multiple directory traversal vulnerabilities in Borland Web Server (BWS) 1.0b3 and earlier allow remote attackers to read and download arbitrary files via (1) multi-dot "......" sequences, or (2) "%5…
|
NVD-CWE-Other
|
CVE-2004-2121
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349324
|
- |
|
intra_forum
|
intra_forum
|
Cross-site scripting (XSS) vulnerability in intraforum_db.cgi in Intra Forum allows remote attackers to inject arbitrary web script or HTML via the (1) use_last_read or (2) forum parameters.
|
NVD-CWE-Other
|
CVE-2004-2122
|
2017-07-11 10:31 |
2004-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349325
|
- |
|
nextplace
|
e-commerce_asp_engine
|
Multiple cross-site scripting (XSS) vulnerabilities in Nextplace.com E-Commerce ASP Engine allow remote attackers to inject arbitrary web script or HTML via the (1) level parameter of productdetail.a…
|
NVD-CWE-Other
|
CVE-2004-2123
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349326
|
- |
|
gallery_project
|
gallery
|
The register_globals simulation capability in Gallery 1.3.1 through 1.4.1 allows remote attackers to modify the HTTP_POST_VARS variable and conduct a PHP remote file inclusion attack via the GALLERY_…
|
NVD-CWE-Other
|
CVE-2004-2124
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349327
|
- |
|
iss
|
blackice_agent_server
blackice_pc_protection
blackice_server_protection
realsecure_desktop
|
Buffer overflow in blackd.exe for BlackICE PC Protection 3.6 and other versions before 3.6.ccb, with application protection off, allows local users to gain system privileges by modifying the .INI fil…
|
NVD-CWE-Other
|
CVE-2004-2125
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349328
|
- |
|
leif_m._wright
|
web_blog
|
Directory traversal vulnerability in Web Blog 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file variable.
|
NVD-CWE-Other
|
CVE-2004-2127
|
2017-07-11 10:31 |
2004-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349329
|
- |
|
-
|
-
|
Cross-site scripting (XSS) vulnerability in BRS WebWeaver 1.07 allows remote attackers to execute arbitrary script as other users via the query string to ISAPISkeleton.dll.
|
NVD-CWE-Other
|
CVE-2004-2128
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349330
|
- |
|
loom_software
|
surfnow_professional
surfnow_standard
|
SurfNOW 2.2 allows remote attackers to cause a denial of service (crash) via a series of long HTTP GET requests, possibly triggering a buffer overflow.
|
NVD-CWE-Other
|
CVE-2004-2129
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
