|
348361
|
- |
|
php_handicapper
|
php_handicapper
|
Cross-site scripting (XSS) vulnerability in PHP Handicapper allows remote attackers to inject arbitrary web script or HTML via the msg parameter to msg.php. NOTE: some sources identify a second vect…
|
CWE-79
Cross-site Scripting
|
CVE-2005-3496
|
2011-03-7 14:00 |
2005-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348362
|
- |
|
apple
|
airport_express
airport_extreme
|
The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7, allows remote attackers to cause a denial of service (unresponsive …
|
CWE-399
Resource Management Errors
|
CVE-2005-3714
|
2011-03-7 14:00 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348363
|
- |
|
sunncomm
|
mediamax_drm
|
SunnComm MediaMax DRM 5.0.21.0, as used by Sony BMG, assigns insecure Everyone/Full Control permissions to the "SunnComm Shared" directory, which allows local users to gain privileges by modifying pr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4069
|
2011-03-7 14:00 |
2005-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348364
|
- |
|
mybulletinboard
|
mybulletinboard
|
Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0 have unknown impact and attack vectors, a different set of vulnerabilities than those identified by CVE-2005-4199.
|
NVD-CWE-noinfo
|
CVE-2005-4200
|
2011-03-7 14:00 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348365
|
- |
|
phpwebgallery
|
phpwebgallery
|
Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to c…
|
CWE-89
SQL Injection
|
CVE-2005-4228
|
2011-03-7 14:00 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348366
|
- |
|
envolution
|
envolution
|
SQL injection vulnerability in the News module in Envolution allows remote attackers to execute arbitrary SQL commands via the (1) startrow and (2) catid parameter.
|
CWE-89
SQL Injection
|
CVE-2005-4263
|
2011-03-7 14:00 |
2005-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348367
|
- |
|
qualcomm
|
worldmail
|
Stack-based buffer overflow in Qualcomm WorldMail 3.0 allows remote attackers to execute arbitrary code via a long IMAP command that ends with a "}" character, as demonstrated using long (1) LIST, (2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-4267
|
2011-03-7 14:00 |
2005-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348368
|
- |
|
nicplex
|
plexcart_x3
|
SQL injection vulnerability in the search function in Plexum PLEXCART X3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly involving the (1) s_itemname and (…
|
CWE-89
SQL Injection
|
CVE-2005-4315
|
2011-03-7 14:00 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348369
|
- |
|
apple
|
safari
webkit
|
WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an in…
|
CWE-399
Resource Management Errors
|
CVE-2010-1729
|
2011-02-17 15:55 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348370
|
- |
|
apple
|
safari
webkit
|
WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and before 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assi…
|
CWE-200
Information Exposure
|
CVE-2010-1388
|
2011-02-17 15:54 |
2010-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
