|
279561
|
- |
|
nortel
|
ssl_vpn
|
tunnelform.yaws in Nortel SSL VPN 4.2.1.6 allows remote attackers to execute arbitrary commands via a link in the a parameter, which is executed with extra privileges in a cryptographically signed Ja…
|
NVD-CWE-Other
|
CVE-2005-4197
|
2018-10-20 00:40 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279562
|
- |
|
mybb
|
mybb
|
Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) before 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) month, (2) day, and (3) year parameters in an addevent…
|
CWE-89
SQL Injection
|
CVE-2005-4199
|
2018-10-20 00:40 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279563
|
- |
|
btgrup
|
admin_webcontroller_script
|
SQL injection vulnerability in BTGrup Admin WebController Script allows remote attackers to execute SQL commands via the (1) Username and (2) Password fields.
|
NVD-CWE-Other
|
CVE-2005-4207
|
2018-10-20 00:40 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279564
|
- |
|
flatnuke
|
flatnuke
|
Directory traversal vulnerability in Flatnuke 2.5.6 allows remote attackers to access arbitrary files via a .. (dot dot) and null byte (%00) in the id parameter of the read module.
|
NVD-CWE-Other
|
CVE-2005-4208
|
2018-10-20 00:40 |
2005-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279565
|
- |
|
coinsoft_technologies
|
phpcoin
|
PHP remote file inclusion vulnerability in coin_includes/db.php in phpCOIN 1.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the $_CCFG[_PKG_PATH_DBSE] variable.
|
NVD-CWE-Other
|
CVE-2005-4211
|
2018-10-20 00:40 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279566
|
- |
|
coinsoft_technologies
|
phpcoin
|
Directory traversal vulnerability in coin_includes/db.php in phpCOIN 1.2.2 allows remote attackers to read arbitrary local files via ".." (dot dot) sequences in the $_CCFG[_PKG_PATH_DBSE] variable.
|
NVD-CWE-Other
|
CVE-2005-4212
|
2018-10-20 00:40 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279567
|
- |
|
coinsoft_technologies
|
phpcoin
|
SQL injection vulnerability in mod.php in phpCOIN 1.2.2 allows remote attackers to execute arbitrary SQL commands via the phpcoinsessid cookie.
|
NVD-CWE-Other
|
CVE-2005-4213
|
2018-10-20 00:40 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279568
|
- |
|
coinsoft_technologies
|
phpcoin
|
phpCOIN 1.2.2 allows remote attackers to obtain the installation path via a direct request to config.php, which leaks the path in an error message because the _CCFG['_PKG_PATH_DBSE'] variable is not …
|
CWE-200
Information Exposure
|
CVE-2005-4214
|
2018-10-20 00:40 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279569
|
- |
|
innovative_cms
|
innovative_cms
|
setting.php in Innovative CMS (ICMS, formerly Imoel-CMS) contains username and password information in cleartext, which might allow attackers to obtain this information via a direct request to settin…
|
NVD-CWE-Other
|
CVE-2005-4219
|
2018-10-20 00:40 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279570
|
- |
|
netgear
|
rp114
|
Netgear RP114, and possibly other versions and devices, allows remote attackers to cause a denial of service via a SYN flood attack between one system on the internal interface and another on the ext…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-4220
|
2018-10-20 00:40 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
