|
300101
|
- |
|
phpbb
|
advanced_quick_reply_hack
|
PHP remote file inclusion vulnerability in quick_reply.php for phpBB Advanced Quick Reply Hack 1.0.0 and 1.1.0 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter.
|
CWE-94
Code Injection
|
CVE-2002-2287
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300102
|
- |
|
mambo
|
site_server
|
Mambo Site Server 4.0.11 allows remote attackers to obtain the physical path of the server via an HTTP request to index.php with a parameter that does not exist, which causes the path to be leaked in…
|
CWE-200
Information Exposure
|
CVE-2002-2288
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300103
|
- |
|
working_resources_inc.
|
badblue
|
soinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords.
|
CWE-200
Information Exposure
|
CVE-2002-2289
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300104
|
- |
|
mambo
|
mambo_site_server
|
Mambo Site Server 4.0.11 installs with a default username and password of admin, which allows remote attackers to gain privileges.
|
CWE-255
Credentials Management
|
CVE-2002-2290
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300105
|
- |
|
calisto
|
calisto_internet_talker
|
Calisto Internet Talker 0.04 and earlier allows remote attackers to cause a denial of service (hang) via a long request, possibly triggering a buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2291
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300106
|
- |
|
halycon_software
|
iasp
|
Directory traversal vulnerability in Remote Console Applet in Halycon Software iASP 1.0.9 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request to port 9095.
|
CWE-22
Path Traversal
|
CVE-2002-2292
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300107
|
- |
|
twofold_photos
|
webshots_desktop
|
Webshots Desktop screensaver allows local users to bypass the password on the screensaver by pressing CTRL-ALT-DELETE and (1) hitting the cancel button or (2) killing the screensaver from the task ma…
|
NVD-CWE-Other
|
CVE-2002-2293
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300108
|
- |
|
symantec
|
enterprise_firewall
raptor_firewall
velociraptor
|
Multiple buffer overflows in Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 allow remote …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2294
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300109
|
- |
|
pico_server
|
pico_server
|
Buffer overflow in Pico Server (pServ) 2.0 beta 1 through beta 5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a 1024-byte TCP stream messag…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2295
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300110
|
- |
|
yabb
|
yabb
|
Cross-site scripting (XSS) vulnerability in YaBB.pl in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 allows remote attackers to inject arbitrary web script or HTML via the num parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2002-2296
|
2017-07-29 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
