|
307241
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
Cross-site scripting (XSS) vulnerability in tiki-edit_structures.php in TikiWiki 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the pageAlias parameter. NOTE: The provenanc…
|
CWE-79
Cross-site Scripting
|
CVE-2006-6162
|
2012-10-24 13:00 |
2006-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307242
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
Cross-site scripting (XSS) vulnerability in tiki-setup_base.php in TikiWiki before 1.9.7 allows remote attackers to inject arbitrary JavaScript via unspecified parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2006-6163
|
2012-10-24 13:00 |
2006-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307243
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
tiki-register.php in TikiWiki before 1.9.7 allows remote attackers to trigger "notification-spam" via certain vectors such as a comma-separated list of addresses in the email field, related to lack o…
|
CWE-20
Improper Input Validation
|
CVE-2006-6168
|
2012-10-24 13:00 |
2006-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307244
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
TikiWiki before 1.8.5 does not properly validate files that have been uploaded to the temp directory, which could allow remote attackers to upload and execute arbitrary PHP scripts, a different vulne…
|
CWE-20
Improper Input Validation
|
CVE-2005-0200
|
2012-10-24 13:00 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307245
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
Cross-site scripting (XSS) vulnerability in TikiWiki before 1.9.1.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2005-3283
|
2012-10-24 13:00 |
2005-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307246
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2010-0851
|
2012-10-23 12:20 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307247
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown v…
|
NVD-CWE-noinfo
|
CVE-2010-0852
|
2012-10-23 12:20 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307248
|
- |
|
oracle
|
fusion_middleware
database_server
|
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8, 9.2.0.8, and DV; and Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1; allows remote attackers to affe…
|
NVD-CWE-noinfo
|
CVE-2010-0853
|
2012-10-23 12:20 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307249
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Audit component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to "SELECT, INS…
|
NVD-CWE-noinfo
|
CVE-2010-0854
|
2012-10-23 12:20 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307250
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.2 allows remote attackers to affect availability via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2010-0856
|
2012-10-23 12:20 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
