|
348941
|
- |
|
horde
|
horde_application_framework
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demons…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4190
|
2011-09-13 13:00 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348942
|
- |
|
iatek
|
projectapp
|
Multiple cross-site scripting (XSS) vulnerabilities in ProjectApp 3.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the keywords parameter to (1) forums.asp, (2) searc…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4485
|
2011-09-13 13:00 |
2005-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348943
|
- |
|
sitekit_solutions
|
sitekit_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Sitekit CMS 6.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) query string, (2) textonly, (3) locID, and…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4491
|
2011-09-13 13:00 |
2005-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348944
|
- |
|
iisworks
|
aspknowledgebase
|
Multiple cross-site scripting (XSS) vulnerabilities in ASP-Programmers.com ASPKnowledgebase allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors in the administrat…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4658
|
2011-09-13 13:00 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348945
|
- |
|
oneplug_solutions
|
oneplug_cms
|
Multiple SQL injection vulnerabilities in OnePlug Solutions OnePlug CMS allow remote attackers to execute arbitrary SQL commands via the (1) Press_Release_ID parameter in press/details.asp, (2) Servi…
|
CWE-89
SQL Injection
|
CVE-2006-0115
|
2011-09-8 13:00 |
2006-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348946
|
- |
|
runcms
|
runcms
|
Multiple PHP remote file include vulnerabilities in RunCMS 1.2 and earlier, with register_globals and allow_url_fopen enabled, allow remote attackers to execute arbitrary code via the bbPath[path] pa…
|
CWE-94
Code Injection
|
CVE-2006-0659
|
2011-09-8 13:00 |
2006-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348947
|
- |
|
runcms
|
runcms
|
Successful exploitation requires that both "register_globals" and "allow_url_fopen" are enabled.
|
CWE-94
Code Injection
|
CVE-2006-0659
|
2011-09-8 13:00 |
2006-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348948
|
- |
|
joomla
|
joomla
|
Multiple SQL injection vulnerabilities in the Admin functionality in Joomla! 1.0.7 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via unknown attack vectors.
|
CWE-89
SQL Injection
|
CVE-2006-1049
|
2011-09-8 13:00 |
2006-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348949
|
- |
|
papoo
|
papoo
|
Multiple SQL injection vulnerabilities in Papoo 2.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the…
|
CWE-89
SQL Injection
|
CVE-2005-4478
|
2011-09-8 13:00 |
2005-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348950
|
- |
|
wordpress
|
wordpress
|
Multiple unspecified vulnerabilities in WordPress before 2.0.4 have unknown impact and remote attack vectors. NOTE: due to lack of details, it is not clear how these issues are different from CVE-20…
|
NVD-CWE-noinfo
|
CVE-2006-4028
|
2011-09-1 13:00 |
2006-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
