|
346151
|
- |
|
internet_sofware_sciences
|
web\+center
|
Multiple SQL injection vulnerabilities in Internet Software Sciences Web+Center 4.0.1 allow remote attackers to execute arbitrary SQL commands via (1) the ISS_TECH_CENTER_LOGIN cookie in search.asp a…
|
NVD-CWE-Other
|
CVE-2004-2561
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346152
|
- |
|
serena_software
|
serena_teamtrack
|
Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct req…
|
NVD-CWE-Other
|
CVE-2004-2563
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346153
|
- |
|
sambar
|
sambar_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow remote attackers to inject arbitrary web script or HTML via (1)…
|
NVD-CWE-Other
|
CVE-2004-2564
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346154
|
- |
|
sambar
|
sambar_server
|
Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the administrative IP address restrictions have been modified from the …
|
NVD-CWE-Other
|
CVE-2004-2565
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346155
|
- |
|
liveworld
|
livechat
livefocusgroup
liveforum
liveq_and_a
|
Multiple cross-site scripting (XSS) vulnerabilities in LiveWorld products, possibly including (1) LiveForum, (2) LiveQ&A, (3) LiveChat, and (4) LiveFocusGroup, allow remote attackers to inject arbitr…
|
NVD-CWE-Other
|
CVE-2004-2566
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346156
|
- |
|
recipants
|
recipants
|
Multiple SQL injection vulnerabilities in ReciPants 1.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) user id, (2) recipe id, (3) category id, and (4) other ID number fields.
|
NVD-CWE-Other
|
CVE-2004-2567
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346157
|
- |
|
david_stes
|
ipmenu
|
ipmenu 0.0.3 before Debian GNU/Linux ipmenu_0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file.
|
NVD-CWE-Other
|
CVE-2004-2569
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346158
|
- |
|
amax_information_technologies
|
magic_winmail_server
|
AMAX Magic Winmail Server 3.6 allows remote attackers to obtain sensitive information by entering (1) invalid characters such as "()" or (2) a large number of characters in the Lookup field on the ne…
|
NVD-CWE-Other
|
CVE-2004-2572
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346159
|
- |
|
enderunix
|
isoqlog
|
Multiple buffer overflows in EnderUNIX isoqlog 2.1.1 allow remote attackers to execute arbitrary code via the (1) parseQmailFromBytesLine, (2) parseQmailToRemoteLine, (3) parseQmailToLocalLine, (4) p…
|
NVD-CWE-Other
|
CVE-2004-2571
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346160
|
- |
|
phpgroupware
|
phpgroupware
|
class.vfs_dav.inc.php in phpGroupWare 0.9.16.000 does not create .htaccess files to enable authorization checks for access to users' home-directory files, which allows remote attackers to obtain sens…
|
NVD-CWE-Other
|
CVE-2004-2576
|
2017-07-11 10:32 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
