|
346171
|
- |
|
photopost
|
photopost_php_pro
|
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 through 4.6 allows remote attackers to execute arbitrary PHP code via a URL in the PP_PATH parameter.
|
NVD-CWE-Other
|
CVE-2006-4828
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346172
|
- |
|
blojsom
|
blojsom
|
Multiple cross-site scripting (XSS) vulnerabilities in David Czarnecki Blojsom 2.31 allow remote attackers to inject arbitrary web script or HTML via the (1) blog-category-description, (2) blog-entry…
|
NVD-CWE-Other
|
CVE-2006-4829
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346173
|
- |
|
blojsom
|
blojsom
|
This vulnerability is addressed in the following product release:
Blojsom, Blojsom, 2.32
|
NVD-CWE-Other
|
CVE-2006-4829
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346174
|
- |
|
verso_netperformer
|
frame_relay_access_device_act
|
Buffer overflow in the telnet service in Verso NetPerformer FRAD ACT SDM-95xx 7.xx (R1) and earlier, SDM-93xx 10.x.x (R2) and earlier, and SDM-92xx 9.x.x (R1) and earlier allows remote attackers to c…
|
NVD-CWE-Other
|
CVE-2006-4832
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346175
|
- |
|
verso_netperformer
|
frame_relay_access_device_act
|
Verso NetPerformer FRAD ACT SDM-95xx 7.xx (R1) and earlier, SDM-93xx 10.x.x (R2) and earlier, and SDM-92xx 9.x.x (R1) and earlier allow remote attackers to cause a denial of service (hang or reboot) …
|
NVD-CWE-Other
|
CVE-2006-4833
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346176
|
- |
|
bluview
|
blue_magic_board
|
Bluview Blue Magic Board (BMB) (aka BMForum) 5.5 allows remote attackers to obtain sensitive information via a direct request to (1) footer.php, (2) header.php, (3) db_mysql_error.php, (4) langlist.p…
|
NVD-CWE-Other
|
CVE-2006-4835
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346177
|
- |
|
codeworx_technologies
|
dcp-portal
|
SQL injection vulnerability in login.php in DCP-Portal SE 6.0 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: The lostpassword.php and calendar.php vector…
|
NVD-CWE-Other
|
CVE-2006-4836
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346178
|
- |
|
codeworx_technologies
|
dcp-portal
|
if magic_qoutes_gpc = off
|
NVD-CWE-Other
|
CVE-2006-4836
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346179
|
- |
|
codeworx_technologies
|
dcp-portal
|
Multiple PHP remote file inclusion vulnerabilities in DCP-Portal SE 6.0 allow remote attackers to execute arbitrary PHP code via a URL in the root parameter in (1) library/lib.php and (2) library/edi…
|
NVD-CWE-Other
|
CVE-2006-4837
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346180
|
- |
|
codeworx_technologies
|
dcp-portal
|
Multiple cross-site scripting (XSS) vulnerabilities in DCP-Portal SE 6.0 allow remote attackers to inject arbitrary web script or HTML via the (1) root_url and (2) dcp_version parameters in (a) admin…
|
NVD-CWE-Other
|
CVE-2006-4838
|
2018-10-18 06:39 |
2006-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|