|
278521
|
- |
|
ibm
|
aix
|
Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd in AIX 5.1 through 5.3 allows local users to execute arbitrary programs by modi…
|
NVD-CWE-Other
|
CVE-2004-1329
|
2018-10-20 00:30 |
2004-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278522
|
- |
|
oracle
|
application_server
collaboration_suite
e-business_suite
enterprise_manager
enterprise_manager_database_control
enterprise_manager_grid_control
oracle10g
oracle8i
oracle9i
|
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote attackers to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
|
CWE-22
Path Traversal
|
CVE-2004-1364
|
2018-10-20 00:30 |
2004-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278523
|
- |
|
php-calendar
|
php-calendar
|
Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote attac…
|
CWE-94
Code Injection
|
CVE-2004-1423
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278524
|
- |
|
university_of_kansas
|
lynx
|
Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag…
|
CWE-20
Improper Input Validation
|
CVE-2004-1617
|
2018-10-20 00:30 |
2004-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278525
|
- |
|
aborior
|
encore_web_forum
|
display.cgi in Aborior Encore WebForum allows remote to execute arbitrary commands via shell metacharacters in the file variable.
|
NVD-CWE-Other
|
CVE-2004-1888
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278526
|
- |
|
-
|
-
|
SQL injection vulnerability in the Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to execute arbitrary SQL via the (1) orderby or (2) sid parameters to modules.php.
|
NVD-CWE-Other
|
CVE-2004-2000
|
2018-10-20 00:30 |
2004-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278527
|
- |
|
zen_cart
|
zen_cart
|
SQL injection vulnerability in login.php in Zen Cart 1.1.2d, 1.1.4 before patch 1, and possibly other versions allows remote attackers to execute arbitrary SQL via the (1) admin_name or (2) admin_pas…
|
NVD-CWE-Other
|
CVE-2004-2023
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278528
|
- |
|
openbsd
|
openssh
|
sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceed…
|
NVD-CWE-Other
|
CVE-2004-2069
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278529
|
- |
|
oracle
|
application_server
|
Oracle toplink mapping workBench uses a weak encryption algorithm for passwords, which allows local users to decrypt the passwords.
|
NVD-CWE-Other
|
CVE-2004-2134
|
2018-10-20 00:30 |
2004-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278530
|
- |
|
ip3_networks
|
ip3_netaccess
ip3_netaccess_-_hospitality
ip3_netaccess_-_wireless_hotspots
|
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was lat…
|
NVD-CWE-Other
|
CVE-2004-2326
|
2018-10-20 00:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
