|
317191
|
- |
|
apache
|
http_server
|
Apache HTTP Server 2.0.47 and earlier allows local users to bypass .htaccess file restrictions, as specified in httpd.conf with directives such as Deny From All, by using an ErrorDocument directive. …
|
NVD-CWE-Other
|
CVE-2004-2343
|
2024-08-8 11:15 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317192
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 1.5.0.1, and possibly other versions, preserves some records of user activity even after uninstalling, which allows local users who share a Windows profile to view the records after a…
|
NVD-CWE-Other
|
CVE-2004-2657
|
2024-08-8 11:15 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317193
|
- |
|
zonelabs
|
zonealarm
|
Zone Alarm Pro 1.0 through 5.1 gives full access to %windir%\Internet Logs\* to the EVERYONE group, which allows local users to cause a denial of service by modifying the folder contents or permissio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2004-2713
|
2024-08-8 11:15 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317194
|
- |
|
nessus
|
nessus
|
Nessus 2.0.10a stores account passwords in plaintext in .nessusrc files, which allows local users to obtain passwords. NOTE: the original researcher reports that the vendor has disputed this issue
|
CWE-255
Credentials Management
|
CVE-2004-2722
|
2024-08-8 11:15 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317195
|
- |
|
php
|
php
|
PHP treats unknown methods such as "PoSt" as a GET request, which could allow attackers to intended access restrictions if PHP is running on a server that passes on all methods, such as Apache httpd …
|
NVD-CWE-Other
|
CVE-2003-0249
|
2024-08-8 11:15 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317196
|
- |
|
ibm
|
lotus_domino
|
NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in IBM Lotus Notes R6 and Domino R6, and possibly earlier versions, allows remote attackers to execute arbi…
|
NVD-CWE-Other
|
CVE-2004-1621
|
2024-08-8 10:15 |
2004-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317197
|
- |
|
khaled_mardam-bey
|
mirc
|
Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been …
|
NVD-CWE-Other
|
CVE-2005-4681
|
2024-08-8 09:15 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317198
|
- |
|
turnkey_solutions
|
sunshop_shopping_cart
|
Turnkey Web Tools SunShop Shopping Cart allows remote attackers to obtain sensitive information via a phpinfo action to (1) index.php, (2) admin/index.php, and (3) admin/adminindex.php, which execute…
|
NVD-CWE-Other
|
CVE-2005-4787
|
2024-08-8 09:15 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317199
|
- |
|
-
|
-
|
Cross-site scripting (XSS) vulnerability in Fidra Lighthouse CMS 1.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a query_string to the hom…
|
NVD-CWE-Other
|
CVE-2005-4780
|
2024-08-8 09:15 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317200
|
- |
|
webwasher
|
csm_appliance_suite
|
The encapsulation script mechanism in Webwasher CSM Appliance Suite 5.x uses case-sensitive detection of malicious tokens, which allows attackers to bypass script detection by using tokens that can b…
|
NVD-CWE-Other
|
CVE-2005-4514
|
2024-08-8 09:15 |
2005-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
