|
256901
|
- |
|
microsoft
|
windows_xp
windows_2003_server
windows_2000
|
NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain argument…
|
NVD-CWE-Other
|
CVE-2005-3981
|
2024-08-8 09:15 |
2005-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256902
|
- |
|
ovbb
|
ovbb
|
Multiple SQL injection vulnerabilities in OvBB 0.08a allow remote attackers to execute arbitrary SQL commands via the (1) threadid parameter to thread.php and (2) userid parameter to profile.php. NOT…
|
NVD-CWE-Other
|
CVE-2005-3918
|
2024-08-8 09:15 |
2005-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256903
|
- |
|
phphandicapper
|
php_handicapper
|
SQL injection vulnerability in process_signup.php in PHP Handicapper allows remote attackers to execute arbitrary SQL commands via the serviceid parameter. NOTE: on 20060210, the vendor disputed thi…
|
CWE-89
SQL Injection
|
CVE-2005-3497
|
2024-08-8 09:15 |
2005-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256904
|
- |
|
jelsoft
|
vbulletin
|
NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in register.php for unknown versions of vBulletin allows remote attackers to inject arbitrary HTML or web s…
|
NVD-CWE-Other
|
CVE-2004-0091
|
2024-08-8 09:15 |
2004-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256905
|
- |
|
filezilla
|
filezilla
|
NOTE: this issue has been disputed by the vendor. FileZilla 2.2.14b and 2.2.15, and possibly earlier versions, when "Use secure mode" is disabled, uses a weak encryption scheme to store the user's p…
|
NVD-CWE-Other
|
CVE-2005-2898
|
2024-08-8 08:15 |
2005-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256906
|
- |
|
neocrome
|
land_down_under
|
Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c …
|
NVD-CWE-Other
|
CVE-2005-2674
|
2024-08-8 08:15 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256907
|
- |
|
neocrome
|
land_down_under
|
Note: the vendor has disputed this issue. Multiple SQL injection vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to execute arbitrary SQL commands via the (1) s or (2) m parameter…
|
NVD-CWE-Other
|
CVE-2005-2675
|
2024-08-8 08:15 |
2005-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256908
|
- |
|
incredible_interactive
|
dragonfly_commerce
|
Dragonfly Commerce allows remote attackers to change a product price by modifying the x_DragonflyCartProductPrice hidden field to (1) dc_Categorieslist.asp, (2) dc_Categoriesview.asp, (3) dc_products…
|
NVD-CWE-Other
|
CVE-2005-2220
|
2024-08-8 08:15 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256909
|
- |
|
incredible_interactive
|
dragonfly_commerce
|
Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute arbitrary SQL commands via the (1) key parameter to dc_Categoriesvie…
|
NVD-CWE-Other
|
CVE-2005-2221
|
2024-08-8 08:15 |
2005-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256910
|
- |
|
sun
|
javamail
|
ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@doma…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-1753
|
2024-08-8 07:15 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
