|
354051
|
- |
|
sgi
|
irix
|
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not sufficiently restrict access rights for read-mostly exports, which allows attackers to conduct unauthorized activit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-0139
|
2016-05-10 01:49 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354052
|
- |
|
sgi
|
irix
|
rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not correctly allow access to anonymous clients that connect from a system whose hostname can not be determined. NOTE: while this issue occurs …
|
CWE-17
Code
|
CVE-2005-0138
|
2016-05-10 00:32 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354053
|
- |
|
-
|
-
|
Unspecified vulnerability in PeopleTools in Oracle PeopleSoft Enterprise 8.42 up to 8.45.17 has unknown impact and attack vectors, as identified by Oracle Vuln# PSE01.
|
NVD-CWE-Other
|
CVE-2005-3461
|
2016-04-30 10:59 |
2005-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354054
|
- |
|
geodesicsolutions
|
geoauctions_premier
geoclassifieds_basic
|
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b para…
|
CWE-89
SQL Injection
|
CVE-2006-3823
|
2015-09-2 01:59 |
2006-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354055
|
- |
|
geodesicsolutions
|
geoauctions_premier
geoclassifieds_basic
|
Successful exploitation requires that the 'accumulative feedback' feature is turned on.
|
CWE-89
SQL Injection
|
CVE-2006-3823
|
2015-09-2 01:59 |
2006-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354056
|
- |
|
roundcube
|
webmail
|
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the netwo…
|
CWE-200
Information Exposure
|
CVE-2010-0464
|
2015-08-25 01:43 |
2010-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354057
|
- |
|
ez
|
ez_publish
|
eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051128 allows remote authenticated users to cause a denial of service (Apache httpd segmentation fault) via a request…
|
CWE-399
Resource Management Errors
|
CVE-2005-4857
|
2015-07-29 00:04 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354058
|
- |
|
ez
|
ez_publish
|
The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051110 does not properly handle authorization errors, which allows remote attackers to obtain …
|
CWE-19
Data Processing Errors
|
CVE-2005-4856
|
2015-07-29 00:03 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354059
|
- |
|
ez
|
ez_publish
|
eZ publish 3.5 through 3.7 before 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4854
|
2015-07-28 23:55 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354060
|
- |
|
ez
|
ez_publish
|
The default configuration of the forum package in eZ publish 3.5 before 3.5.5, 3.6 before 3.6.2, 3.7 before 3.7.0rc2, and 3.8 before 20050818 does not restrict edit permissions to a posting's owner, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4853
|
2015-07-28 23:41 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
