|
280501
|
- |
|
postnuke_software_foundation
|
postnuke
|
PostNuke 0.7.5.0, and certain minor versions, allows remote attackers to obtain sensitive information via a non-numeric value of the stop parameter, which reveals the path in an error message.
|
NVD-CWE-Other
|
CVE-2006-6267
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280502
|
- |
|
neocrome
|
land_down_under
|
SQL injection vulnerability in system/core/profile/profile.inc.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote authenticated users to execute arbitrary SQL commands via a url-enco…
|
NVD-CWE-Other
|
CVE-2006-6268
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280503
|
- |
|
infinity_technologies
|
infinitytechs_restaurants_cm
|
Multiple SQL injection vulnerabilities in Infinitytechs Restaurants CM allow remote attackers to execute arbitrary SQL commands via (1) the id parameter in rating.asp, (2) the mealid parameter in mea…
|
NVD-CWE-Other
|
CVE-2006-6269
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280504
|
- |
|
kervancilar
|
aspmforum
|
Multiple SQL injection vulnerabilities in ASPMForum allow remote attackers to execute arbitrary SQL commands via (1) the soruid parameter in forum2.asp, (2) the ak parameter in kullanicilistesi.asp, …
|
NVD-CWE-Other
|
CVE-2006-6270
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280505
|
- |
|
phpoll
|
phpoll
|
Multiple cross-site scripting (XSS) vulnerabilities in PHPOLL 0.96 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) index.php, (2) info.php; and (3) ind…
|
NVD-CWE-Other
|
CVE-2006-6271
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280506
|
- |
|
paul_griffin
|
simple_php_gallery
|
Cross-site scripting (XSS) vulnerability in sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.
|
NVD-CWE-Other
|
CVE-2006-6272
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280507
|
- |
|
paul_griffin
|
simple_php_gallery
|
sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to obtain sensitive information via an invalid dir parameter, which reveals the path in an error message.
|
NVD-CWE-Other
|
CVE-2006-6273
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280508
|
- |
|
expinion.net
|
inews_publisher
news_manager
|
SQL injection vulnerability in articles.asp in Expinion.net iNews (1) Publisher (iNP) 2.5 and earlier, and possibly (2) News Manager, allows remote attackers to execute arbitrary SQL commands via the…
|
NVD-CWE-Other
|
CVE-2006-6274
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280509
|
- |
|
contentserv
|
contentserv
|
Directory traversal vulnerability in admin/FileServer.php in ContentServ 4.x allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter, a different vector than CVE-2005-…
|
NVD-CWE-Other
|
CVE-2006-6277
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280510
|
- |
|
alexphpteam
|
alex_guestbook
|
Cross-site scripting (XSS) vulnerability in index.php in @lex Guestbook 4.0.1 allows remote attackers to inject arbitrary web script or HTML via the skin parameter.
|
NVD-CWE-Other
|
CVE-2006-6278
|
2018-10-18 06:47 |
2006-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
