|
278731
|
- |
|
graeme
|
uploader
|
Unrestricted file upload vulnerability in uploader.php in Uploader 1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a dire…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2003-1552
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278732
|
- |
|
sips
|
sips
|
Haakon Nilsen Simple Internet Publishing System (SIPS) 0.2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password and oth…
|
CWE-200
Information Exposure
|
CVE-2003-1553
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278733
|
- |
|
scoznet
|
scozbook
|
Cross-site scripting (XSS) vulnerability in scozbook/add.php in ScozNet ScozBook 1.1 BETA allows remote attackers to inject arbitrary web script or HTML via the (1) username, (2) useremail, (3) aim, …
|
CWE-79
Cross-site Scripting
|
CVE-2003-1554
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278734
|
- |
|
scoznet
|
scozbook
|
ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php, which reveals the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2003-1555
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278735
|
- |
|
cgi_city
|
cc_guestbook
|
Cross-site scripting (XSS) vulnerability in cc_guestbook.pl in CGI City CC GuestBook allows remote attackers to inject arbitrary web script or HTML via the (1) name and (2) homepage_title (webpage ti…
|
CWE-79
Cross-site Scripting
|
CVE-2003-1556
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278736
|
- |
|
spamassassin
|
spamassassin
|
Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "." ch…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2003-1557
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278737
|
- |
|
fefe
|
fnord
|
Buffer overflow in httpd.c of fnord 1.6 allows remote attackers to create a denial of service (crash) and possibly execute arbitrary code via a long CGI request passed to the do_cgi function.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2003-1558
|
2018-10-20 00:29 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278738
|
- |
|
microsoft
|
frontpage
|
Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.
|
NVD-CWE-Other
|
CVE-2000-0122
|
2018-10-20 00:29 |
2000-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278739
|
- |
|
microsoft
|
frontpage
personal_web_server
windows_nt
|
Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Sid…
|
NVD-CWE-Other
|
CVE-2000-0256
|
2018-10-20 00:29 |
2000-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278740
|
- |
|
dansie
|
shopping_cart
|
Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to an e-mail address controlled by the product developers.
|
NVD-CWE-Other
|
CVE-2000-1243
|
2018-10-20 00:29 |
2000-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
