|
354701
|
- |
|
ozjournals
|
ozjournals
|
Cross-site scripting (XSS) vulnerability in index.php in Elaine Aquino Online Zone Journals (OZJournals) 1.5 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.…
|
NVD-CWE-Other
|
CVE-2006-4086
|
2011-03-8 11:40 |
2006-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354702
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.1.0.1 have unspecified impact and attack vectors involving (1) "SOAP requests and responses", (2) mbean, (3) ThreadId…
|
CWE-200
CWE-264
Information Exposure
Permissions, Privileges, and Access Controls
|
CVE-2006-4136
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354703
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server before 6.1.0.1 allows attackers to obtain sensitive information via unspecified vectors related to (1) the log file, (2) "script generated syntax on wsadmin command l…
|
NVD-CWE-Other
|
CVE-2006-4137
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354704
|
- |
|
invision_power_services
|
invision_power_board
|
Unspecified vulnerability in func_topic_threaded.php (aka threaded view mode) in Invision Power Board (IPB) before 2.1.7 21013.60810.s allows remote attackers to "access posts outside the topic."
|
NVD-CWE-Other
|
CVE-2006-4155
|
2011-03-8 11:40 |
2006-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354705
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.0.2.13 have unspecified vectors and impact, including (1) an "authority problem" in ThreadIdentitySupport as identifi…
|
NVD-CWE-Other
|
CVE-2006-4222
|
2011-03-8 11:40 |
2006-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354706
|
- |
|
twiki
|
twiki
|
Directory traversal vulnerability in viewfile in TWiki 4.0.0 through 4.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
|
NVD-CWE-Other
|
CVE-2006-4294
|
2011-03-8 11:40 |
2006-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354707
|
- |
|
cgi-rescue
|
mail_f_w_system
|
CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) before 8.3 allows remote attackers to spoof e-mails and inject e-mail headers via unspecified vectors in (1) mail.cgi and (2) query.…
|
NVD-CWE-Other
|
CVE-2006-4344
|
2011-03-8 11:40 |
2006-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354708
|
- |
|
doctor_web_ltd
|
dr.web
|
Heap-based buffer overflow in SpIDer for Dr.Web Scanner for Linux 4.33, and possibly earlier versions, allows remote attackers to execute arbitrary code via an LHA archive with an extended header tha…
|
NVD-CWE-Other
|
CVE-2006-4438
|
2011-03-8 11:40 |
2006-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354709
|
- |
|
ay_system_solutions
|
ay_system_solutions_cms
|
Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter t…
|
NVD-CWE-Other
|
CVE-2006-4441
|
2011-03-8 11:40 |
2006-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354710
|
- |
|
clemens_wacha
|
php_iaddressbook
|
Cross-site scripting (XSS) vulnerability in PHP iAddressBook before 0.95 allows remote attackers to inject arbitrary web script or HTML via the cat_name parameter, related to adding a category. (cate…
|
NVD-CWE-Other
|
CVE-2006-4442
|
2011-03-8 11:40 |
2006-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
