|
349091
|
- |
|
metamail_corporation
|
metamail
|
Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2004-1808
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349092
|
- |
|
phpbb_group
|
phpbb
|
Cross-site scripting (XSS) vulnerability in phpBB 2.0.6d and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) postdays parameter to viewtopic.php or (2) topicdays pa…
|
NVD-CWE-Other
|
CVE-2004-1809
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349093
|
- |
|
hp
|
ssl_http_server
|
The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access enabled, allows remote attackers to compromise the trusted certificates by uploading their own certif…
|
NVD-CWE-Other
|
CVE-2004-1811
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349094
|
- |
|
vocaltec
|
vgw4_8_telephony_gateway
|
VocalTec VGW4/8 Gateway 8.0 allows remote attackers to bypass authentication via an HTTP request to home.asp with a trailing slash (/).
|
NVD-CWE-Other
|
CVE-2004-1813
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349095
|
- |
|
vocaltec
|
vgw4_8_telephony_gateway
|
Directory traversal vulnerability in VocalTec VGW4/8 Gateway 8.0 allows remote attackers to read protected files via .. (dot dot) sequences in an HTTP request, as demonstrated using home.asp.
|
NVD-CWE-Other
|
CVE-2004-1814
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349096
|
- |
|
macromedia
sun
|
coldfusion
jrun
one_application_server
|
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of service (memory cons…
|
NVD-CWE-Other
|
CVE-2004-1815
|
2017-07-11 10:31 |
2004-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349097
|
- |
|
-
|
-
|
Unknown vulnerability in Sun Java System Application Server 7.0 Update 2 and earlier, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of …
|
NVD-CWE-Other
|
CVE-2004-1816
|
2017-07-11 10:31 |
2004-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349098
|
- |
|
francisco_burzi
|
php-nuke
|
Cross-site scripting (XSS) vulnerability in modules.php in Php-Nuke 7.1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) Your Name field, (2) e-mail field, (3) nicname fie…
|
NVD-CWE-Other
|
CVE-2004-1817
|
2017-07-11 10:31 |
2004-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349099
|
- |
|
-
|
-
|
Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to execute arbitrary script as other users by injecting arbitrary script i…
|
NVD-CWE-Other
|
CVE-2004-1818
|
2017-07-11 10:31 |
2004-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349100
|
- |
|
warpspeed
|
4nalbum_module
|
4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to obtain sensitive information via a direct request to displaycategory.php, which reveals the path in an error message.
|
NVD-CWE-Other
|
CVE-2004-1819
|
2017-07-11 10:31 |
2004-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
