|
279861
|
- |
|
php-calendar
|
php-calendar
|
Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote attac…
|
CWE-94
Code Injection
|
CVE-2004-1423
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279862
|
- |
|
university_of_kansas
|
lynx
|
Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag…
|
CWE-20
Improper Input Validation
|
CVE-2004-1617
|
2018-10-20 00:30 |
2004-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279863
|
- |
|
aborior
|
encore_web_forum
|
display.cgi in Aborior Encore WebForum allows remote to execute arbitrary commands via shell metacharacters in the file variable.
|
NVD-CWE-Other
|
CVE-2004-1888
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279864
|
- |
|
-
|
-
|
SQL injection vulnerability in the Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to execute arbitrary SQL via the (1) orderby or (2) sid parameters to modules.php.
|
NVD-CWE-Other
|
CVE-2004-2000
|
2018-10-20 00:30 |
2004-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279865
|
- |
|
zen_cart
|
zen_cart
|
SQL injection vulnerability in login.php in Zen Cart 1.1.2d, 1.1.4 before patch 1, and possibly other versions allows remote attackers to execute arbitrary SQL via the (1) admin_name or (2) admin_pas…
|
NVD-CWE-Other
|
CVE-2004-2023
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279866
|
- |
|
openbsd
|
openssh
|
sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceed…
|
NVD-CWE-Other
|
CVE-2004-2069
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279867
|
- |
|
oracle
|
application_server
|
Oracle toplink mapping workBench uses a weak encryption algorithm for passwords, which allows local users to decrypt the passwords.
|
NVD-CWE-Other
|
CVE-2004-2134
|
2018-10-20 00:30 |
2004-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279868
|
- |
|
ip3_networks
|
ip3_netaccess
ip3_netaccess_-_hospitality
ip3_netaccess_-_wireless_hotspots
|
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was lat…
|
NVD-CWE-Other
|
CVE-2004-2326
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279869
|
- |
|
ca
ibm
jetty
|
unicenter_web_services_distributed_management
trading_partner_interchange
jetty_http_server
|
Unspecified vulnerability in Jetty HTTP Server, as used in (1) IBM Trading Partner Interchange before 4.2.4, (2) CA Unicenter Web Services Distributed Management (WSDM) before 3.11, and possibly othe…
|
NVD-CWE-noinfo
|
CVE-2004-2478
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279870
|
- |
|
qwikmail
|
qwikmail_smtp
|
Format string vulnerability in qwik-smtpd.c in QwikMail SMTP (qwik-smtpd) 0.3 and earlier allows remote attackers to execute arbitrary code via format specifiers in the (1) clientRcptTo array, and th…
|
NVD-CWE-Other
|
CVE-2004-2677
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
