|
279631
|
- |
|
vtiger
|
vtiger_crm
|
Multiple SQL injection vulnerabilities in vTiger CRM 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username in the login form or (2) record parameter, as demons…
|
NVD-CWE-Other
|
CVE-2005-3822
|
2018-10-20 00:39 |
2005-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279632
|
- |
|
vtiger
|
vtiger_crm
|
The Users module in vTiger CRM 4.2 and earlier allows remote attackers to execute arbitrary PHP code via an arbitrary file in the templatename parameter, which is passed to the eval function.
|
NVD-CWE-Other
|
CVE-2005-3823
|
2018-10-20 00:39 |
2005-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279633
|
- |
|
vtiger
|
vtiger_crm
|
The uploads module in vTiger CRM 4.2 and earlier allows remote attackers to upload arbitrary files, such as PHP files, via the add2db action.
|
NVD-CWE-Other
|
CVE-2005-3824
|
2018-10-20 00:39 |
2005-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279634
|
- |
|
speedproject
|
speedcommander
squeez
zipstar
|
Stack-based buffer overflow in (1) CxZIP60.dll and (2) CxZIP60u.dll, as used in SpeedProject products including (a) ZipStar 5.0 Build 4285, (b) Squeez 5.0 Build 4285, and (c) SpeedCommander 11.0 Buil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3831
|
2018-10-20 00:39 |
2005-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279635
|
- |
|
speedproject
|
speedcommander
squeez
|
Stack-based buffer overflow in (1) CxUux60.dll and (2) CxUux60u.dll, as used in SpeedProject products including (a) Squeez 5.0 Build 4285, and (b) SpeedCommander 11.0 Build 4430 and 10.51 Build 4430,…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3832
|
2018-10-20 00:39 |
2005-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279636
|
- |
|
pmwiki
|
pmwiki
|
Cross-site scripting (XSS) vulnerability in the Search module in PmWiki up to 2.0.12 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
|
NVD-CWE-Other
|
CVE-2005-3849
|
2018-10-20 00:39 |
2005-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279637
|
- |
|
q-news
|
q-news
|
PHP remote file inclusion vulnerability in q-news.php in Q-News 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter.
|
CWE-94
Code Injection
|
CVE-2005-3859
|
2018-10-20 00:39 |
2005-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279638
|
- |
|
oliver_may
|
athena_php_website_administration
|
PHP remote file inclusion vulnerability in athena.php in Oliver May Athena PHP Website Administration 0.1a allows remote attackers to execute arbitrary PHP code via a URL in the athena_dir parameter.
|
CWE-94
Code Injection
|
CVE-2005-3860
|
2018-10-20 00:39 |
2005-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279639
|
- |
|
phpgreetz
|
phpgreetz
|
PHP remote file inclusion vulnerability in content.php in phpGreetz 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the content parameter.
|
CWE-94
Code Injection
|
CVE-2005-3861
|
2018-10-20 00:39 |
2005-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279640
|
- |
|
ktools
|
ktools
|
Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3863
|
2018-10-20 00:39 |
2005-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
