|
284151
|
- |
|
sage-mozdev
|
sage
|
Firefox Sage extension 1.3.8 and earlier allows remote attackers to execute arbitrary Javascript in the local context via an RSS feed with an img tag containing the script followed by an extra traili…
|
NVD-CWE-Other
|
CVE-2006-6919
|
2018-10-17 01:29 |
2007-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284152
|
- |
|
grandora
|
rialto
|
Multiple SQL injection vulnerabilities in Rialto 1.6 allow remote attackers to execute arbitrary SQL commands via (1) the uname (username) and (2) pword (passwd) fields in (a) admin/default.asp; the …
|
NVD-CWE-Other
|
CVE-2006-6927
|
2018-10-17 01:29 |
2007-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284153
|
- |
|
grandora
|
rialto
|
Multiple cross-site scripting (XSS) vulnerabilities in Rialto 1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter to (a) listmain.asp or (b) searchmain.asp, th…
|
NVD-CWE-Other
|
CVE-2006-6928
|
2018-10-17 01:29 |
2007-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284154
|
- |
|
image_gallery_with_access_database
|
image_gallery_with_access_database
|
Multiple SQL injection vulnerabilities in Image Gallery with Access Database allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to (a) dispimage.asp, or the (2) order o…
|
NVD-CWE-Other
|
CVE-2006-6932
|
2018-10-17 01:29 |
2007-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284155
|
- |
|
pensacola_web_designs
|
xtremeasp_photogallery
|
Cross-site scripting (XSS) vulnerability in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary HTML or web script via (1) the catname parameter to displaypic.asp or (2) the search f…
|
NVD-CWE-Other
|
CVE-2006-6936
|
2018-10-17 01:29 |
2007-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284156
|
- |
|
pensacola_web_designs
|
xtremeasp_photogallery
|
SQL injection vulnerability in displaypic.asp in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary SQL commands via the sortorder parameter.
|
NVD-CWE-Other
|
CVE-2006-6937
|
2018-10-17 01:29 |
2007-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284157
|
- |
|
ca
|
host-based_intrusion_prevention_system
|
Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged…
|
NVD-CWE-Other
|
CVE-2006-6952
|
2018-10-17 01:29 |
2007-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284158
|
- |
|
globetrotter
|
mobility_manager
|
The virtual keyboard implementation in GlobeTrotter Mobility Manager changes the color of a key as it is pressed, which allows local users to capture arbitrary keystrokes, such as for passwords, by s…
|
CWE-200
Information Exposure
|
CVE-2006-6953
|
2018-10-17 01:29 |
2007-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284159
|
- |
|
flock
|
flock
|
Flock beta 1 0.7 allows remote attackers to cause a denial of service (application crash) via a web page that contains a large number of nested marquee tags, a related issue to CVE-2006-2723.
|
CWE-20
Improper Input Validation
|
CVE-2006-6954
|
2018-10-17 01:29 |
2007-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284160
|
- |
|
phpbluedragon
|
phpbluedragon_cms
|
Multiple PHP remote file inclusion vulnerabilities in phpBlueDragon 2.9.1 allow remote attackers to execute arbitrary PHP code via a URL in the vsDragonRootPath parameter to (1) team_admin.php, (2) r…
|
CWE-94
Code Injection
|
CVE-2006-6958
|
2018-10-17 01:29 |
2007-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
