|
279741
|
- |
|
apple
|
quicktime
|
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a GIF image file with a crafted Netscape Navigator Application Extension Block that mo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3713
|
2018-10-20 00:38 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279742
|
- |
|
ipsec-tools
|
ipsec-tools
|
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service …
|
CWE-399
Resource Management Errors
|
CVE-2005-3732
|
2018-10-20 00:38 |
2005-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279743
|
- |
|
phpmyfaq
|
phpmyfaq
|
Cross-site scripting (XSS) vulnerability in the "add content" page in phpMyFAQ 1.5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) thema, (2) username, and (3…
|
NVD-CWE-Other
|
CVE-2005-3734
|
2018-10-20 00:38 |
2005-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279744
|
- |
|
mambo
|
mambo_site_server
|
globals.php in Mambo Site Server 4.0.14 and earlier, when register_globals is disabled, allows remote attackers to overwrite variables in the GLOBALS array and conduct various attacks, as demonstrate…
|
NVD-CWE-Other
|
CVE-2005-3738
|
2018-10-20 00:38 |
2005-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279745
|
- |
|
invision_power_services
|
invision_board
|
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.1 allows remote attackers to inject arbitrary web script or HTML via the (1) adsess, (2) name, and (3) description parameters in adm…
|
NVD-CWE-Other
|
CVE-2005-3547
|
2018-10-20 00:37 |
2005-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279746
|
- |
|
invision_power_services
|
invision_board
|
Directory traversal vulnerability in Task Manager in Invision Power Board (IP.Board) 2.0.1 allows limited remote attackers to include files via a .. (dot dot) in the "Task PHP File To Run" field.
|
CWE-22
Path Traversal
|
CVE-2005-3548
|
2018-10-20 00:37 |
2005-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279747
|
- |
|
invision_power_services
|
invision_board
|
Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote attackers to execute arbitrary code by referencing the file in "Task PHP File To Run" field and…
|
NVD-CWE-Other
|
CVE-2005-3549
|
2018-10-20 00:37 |
2005-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279748
|
- |
|
toenda_software_development
|
toendacms
|
Directory traversal vulnerability in admin.php in toendaCMS before 0.6.2 allows remote attackers to access arbitrary files via a .. (dot dot) in the id_user parameter.
|
NVD-CWE-Other
|
CVE-2005-3550
|
2018-10-20 00:37 |
2005-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279749
|
- |
|
toenda_software_development
|
toendacms
|
toendaCMS before 0.6.2 stores user account and session data in the web root directory, which allows remote attackers to obtain sensitive information via a direct request to the appropriate XML file.
|
NVD-CWE-Other
|
CVE-2005-3551
|
2018-10-20 00:37 |
2005-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279750
|
- |
|
tincan
|
phplist
|
Multiple SQL injection vulnerabilities in PHPlist 2.10.1 and earlier allow authenticated remote attackers with administrator privileges to execute arbitrary SQL commands via the id parameter in the (…
|
NVD-CWE-Other
|
CVE-2005-3555
|
2018-10-20 00:37 |
2005-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
