|
345301
|
- |
|
invision_power_services
|
invision_gallery
|
SQL injection vulnerability in post.php in Invision Gallery 2.0.6 allows remote attackers to execute arbitrary SQL commands via the album parameter.
|
NVD-CWE-Other
|
CVE-2006-2202
|
2018-10-19 01:38 |
2006-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345302
|
- |
|
invision_power_services
|
invision_power_board
|
SQL injection vulnerability in the topic deletion functionality (post_delete function in func_mod.php) for Invision Power Board 2.1.5 allows remote authenticated moderators to execute arbitrary SQL c…
|
NVD-CWE-Other
|
CVE-2006-2204
|
2018-10-19 01:38 |
2006-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345303
|
- |
|
321soft
|
php-gallery
|
Cross-site scripting (XSS) vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to inject arbitrary web script or HTML via the path parameter. NOTE: this issue might be resu…
|
NVD-CWE-Other
|
CVE-2006-2210
|
2018-10-19 01:38 |
2006-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345304
|
- |
|
321soft
|
php-gallery
|
Absolute path traversal vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to browse arbitrary directories via the path parameter.
|
NVD-CWE-Other
|
CVE-2006-2211
|
2018-10-19 01:38 |
2006-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345305
|
- |
|
karjasoft
|
sami_ftp_server
|
Buffer overflow in KarjaSoft Sami FTP Server 2.0.2 and earlier allows remote attackers to execute arbitrary code via a long (1) USER or (2) PASS command.
|
NVD-CWE-Other
|
CVE-2006-2212
|
2018-10-19 01:38 |
2006-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345306
|
- |
|
devsyn
|
open_bulletin_board
|
Open Bulletin Board (OpenBB) 1.0.8 allows remote attackers to obtain the full path of the web server via an invalid pforums parameter to (1) misc.php and (2) member.php.
|
NVD-CWE-Other
|
CVE-2006-2216
|
2018-10-19 01:38 |
2006-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345307
|
- |
|
bitrock process-one
|
install_builder ejabberd
|
A third-party installer generation tool, possibly BitRock InstallBuilder, as used in products including Process-one ejabberd 1.1.1_1 and earlier, generates an installer that allows local users to cau…
|
NVD-CWE-Other
|
CVE-2006-2221
|
2018-10-19 01:38 |
2006-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345308
|
- |
|
bitrock process-one
|
install_builder ejabberd
|
This vulnerability is addressed in the following product releases:
Process-one, ejabberd, 1.1.1_2
BitRock, Install Builder, 3.7.0
|
NVD-CWE-Other
|
CVE-2006-2221
|
2018-10-19 01:38 |
2006-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345309
|
- |
|
norz
|
zawhttpd
|
Buffer overflow in zawhttpd 0.8.23, and possibly previous versions, allows remote attackers to cause a denial of service (daemon crash) via a request for a URI composed of several "\" (backslash) cha…
|
NVD-CWE-Other
|
CVE-2006-2222
|
2018-10-19 01:38 |
2006-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345310
|
- |
|
quagga
|
quagga
|
RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1) disable RIPv1 or (2) require plaintext or MD5 authentication, which allows remote attackers to obtain …
|
CWE-20
Improper Input Validation
|
CVE-2006-2223
|
2018-10-19 01:38 |
2006-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|