|
352551
|
- |
|
avaya
|
cajun_m770-atm
cajun_p130
cajun_p330
|
An undocumented SNMP read/write community string ('NoGaH$@!') in Avaya P330, P130, and M770-ATM Cajun products allows remote attackers to gain administrative privileges.
|
NVD-CWE-Other
|
CVE-2002-1448
|
2008-09-6 05:30 |
2002-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352552
|
- |
|
ibm
|
u2_universe
|
IBM UniVerse with UV/ODBC allows attackers to cause a denial of service (client crash or server CPU consumption) via a query with an invalid link between tables, possibly via a buffer overflow.
|
NVD-CWE-Other
|
CVE-2002-1450
|
2008-09-6 05:30 |
2002-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352553
|
- |
|
desiderata_software
|
blazix
|
Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a (1) "+" or (2) "\" (backslash) character.
|
NVD-CWE-Other
|
CVE-2002-1451
|
2008-09-6 05:30 |
2002-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352554
|
- |
|
omnicron
|
omnihttpd
|
Multiple cross-site scripting (XSS) vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via (1) test.php, (2) test.shtml, or (3) redir.exe.
|
NVD-CWE-Other
|
CVE-2002-1455
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352555
|
- |
|
leszek_krupinski
|
l-forum
|
SQL injection vulnerability in search.php for L-Forum 2.40 allows remote attackers to execute arbitrary SQL statements via the search parameter.
|
NVD-CWE-Other
|
CVE-2002-1457
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352556
|
- |
|
leszek_krupinski
|
l-forum
|
Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is on, allows remote attackers to insert arbitrary script or HTML via message fields includin…
|
NVD-CWE-Other
|
CVE-2002-1458
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352557
|
- |
|
leszek_krupinski
|
l-forum
|
Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows remote attackers to insert arbitrary script or HTML via message fields includi…
|
NVD-CWE-Other
|
CVE-2002-1459
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352558
|
- |
|
leszek_krupinski
|
l-forum
|
L-Forum 2.40 and earlier does not properly verify whether a file was uploaded or if the associated variables were set by POST (attachment, attachment_name, attachment_size and attachment_type), which…
|
NVD-CWE-Other
|
CVE-2002-1460
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352559
|
- |
|
webscriptworld
|
web_shop_manager
|
Web Shop Manager 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search box.
|
NVD-CWE-Other
|
CVE-2002-1461
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352560
|
- |
|
organicphp
|
php-affiliate
|
details2.php in OrganicPHP PHP-affiliate 1.0, and possibly later versions, allows remote attackers to modify information of other users by modifying certain hidden form fields.
|
NVD-CWE-Other
|
CVE-2002-1462
|
2008-09-6 05:30 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
