|
346471
|
- |
|
blanknberg
|
blanknberg
|
Directory traversal vulnerability in index.php in Blank'N'Berg 0.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the _path parameter.
|
NVD-CWE-Other
|
CVE-2006-1581
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346472
|
- |
|
blanknberg
|
blanknberg
|
Cross-site scripting (XSS) vulnerability in index.php in Blank'N'Berg 0.2 allows remote attackers to inject arbitrary web script or HTML via the _path parameter. NOTE: this might be resultant from t…
|
NVD-CWE-Other
|
CVE-2006-1582
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346473
|
- |
|
netbsd
|
netbsd
|
NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the record file.
|
NVD-CWE-Other
|
CVE-2006-1587
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346474
|
- |
|
netbsd
|
netbsd
|
The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kern…
|
NVD-CWE-Other
|
CVE-2006-1588
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346475
|
- |
|
netbsd
|
netbsd
|
The elf_load_file function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service (kernel crash) via an ELF interpreter that does not have a PT_LOAD section in its header, which tr…
|
NVD-CWE-Other
|
CVE-2006-1589
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346476
|
- |
|
netbsd
|
netbsd
|
The NetBSD 2.x versions are only affected if the kernel is compiled with the USE_TOPDOWN_VM option (not default in generic kernels).
|
NVD-CWE-Other
|
CVE-2006-1589
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346477
|
- |
|
kevin_johnson
roman_danyliw
|
basic_analysis_and_security_engine
analysis_console_for_intrusion_databases_\(acid\)
|
Analysis Console for Intrusion Databases - The vendor has discontinued this product and therefore has no patch or upgrade that mitigates this problem.
Basic Analysis and Security Engine - Upgrade …
|
NVD-CWE-Other
|
CVE-2006-1590
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346478
|
- |
|
kevin_johnson
roman_danyliw
|
basic_analysis_and_security_engine
analysis_console_for_intrusion_databases_\(acid\)
|
Cross-site scripting (XSS) vulnerability in the PrintFreshPage function in (1) Basic Analysis and Security Engine (BASE) 1.2.4 and (2) Analysis Console for Intrusion Databases (ACID) 0.9.6b23 allows …
|
NVD-CWE-Other
|
CVE-2006-1590
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346479
|
- |
|
sun
|
cluster
|
Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 allows local users with solaris.cluster.gui authorization to view arbitrary files via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2006-1601
|
2017-07-20 10:30 |
2006-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346480
|
- |
|
phpbb_group
|
phpbb
|
Cross-site scripting (XSS) vulnerability in profile.php in phpBB 2.0.19 allows remote attackers to inject arbitrary web script or HTML via the cur_password parameter. NOTE: the provenance of this in…
|
NVD-CWE-Other
|
CVE-2006-1603
|
2017-07-20 10:30 |
2006-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
