|
345031
|
- |
|
epic_designs
|
eggblog
|
The vendor has released version 3.0.7 of eggblog to address this issue.
|
NVD-CWE-Other
|
CVE-2006-2725
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345032
|
- |
|
epic_designs
|
eggblog
|
home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly other users via a modified username parameter.
|
NVD-CWE-Other
|
CVE-2006-2727
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345033
|
- |
|
epic_designs
|
eggblog
|
This vulnerability is addressed in the following product release:
Epic Designs, eggblog, 3.0.7
|
NVD-CWE-Other
|
CVE-2006-2727
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345034
|
- |
|
jan_chmelik
|
photoalbum_bandw
|
Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject arbitrary web script or HTML via the pic parameter.
|
NVD-CWE-Other
|
CVE-2006-2728
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345035
|
- |
|
mini-nuke
|
mini-nuke
|
SQL injection vulnerability in Your_Account.asp in Mini-Nuke 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) yas_1, (2) yas_2, and (3) yas_3 parameters.
|
NVD-CWE-Other
|
CVE-2006-2732
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345036
|
- |
|
mini-nuke
|
mini-nuke
|
membership.asp in Mini-Nuke 2.3 and earlier uses plaintext security codes, which allows remote attackers to register multiple times via automated scripts.
|
NVD-CWE-Other
|
CVE-2006-2733
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345037
|
- |
|
mini-nuke
|
mini-nuke
|
enter.asp in Mini-Nuke 2.3 and earlier makes it easier for remote attackers to conduct password guessing attacks by setting the guvenlik parameter to the same value as the hidden gguvenlik parameter,…
|
NVD-CWE-Other
|
CVE-2006-2734
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345038
|
- |
|
enigma_haber
|
enigma_haber
|
Multiple SQL injection vulnerabilities in Enigma Haber 4.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in (a) e_mesaj_yas.asp, (b) edi_haber.asp, and…
|
NVD-CWE-Other
|
CVE-2006-2731
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345039
|
- |
|
activity_mod_plus
|
activity_mod_plus
|
PHP remote file inclusion vulnerability in language/lang_english/lang_activity.php in Activity MOD Plus (Amod) 1.1.0, as used with phpBB when register_globals is enabled, allows remote attackers to e…
|
NVD-CWE-Other
|
CVE-2006-2735
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345040
|
- |
|
phpbb-portal
|
blend_portal
|
PHP remote file inclusion vulnerability in blend_data/blend_common.php in Blend Portal 1.2.0, as used with phpBB when register_globals is enabled, allows remote attackers to execute arbitrary PHP cod…
|
NVD-CWE-Other
|
CVE-2006-2736
|
2018-10-19 01:41 |
2006-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|