|
345241
|
- |
|
verosky_media
|
instant_photo_gallery
|
Cross-site scripting (XSS) vulnerability in portfolio.php in Verosky Media Instant Photo Gallery, possibly before 1.0.2, allows remote attackers to inject arbitrary web script or HTML via the cat_id …
|
NVD-CWE-Other
|
CVE-2006-2079
|
2018-10-19 01:38 |
2006-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345242
|
- |
|
verosky_media
|
instant_photo_gallery
|
SQL injection vulnerability in portfolio_photo_popup.php in Verosky Media Instant Photo Gallery 1.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, which is not clea…
|
NVD-CWE-Other
|
CVE-2006-2080
|
2018-10-19 01:38 |
2006-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345243
|
- |
|
oracle
|
database_server
|
Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via the GET_DOMAIN_INDEX_METADATA function in the DBMS_EXPORT_EXTENSION package. NOTE: this issue was original…
|
NVD-CWE-Other
|
CVE-2006-2081
|
2018-10-19 01:38 |
2006-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345244
|
- |
|
id_software
|
quake_3_engine
|
Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when t…
|
NVD-CWE-Other
|
CVE-2006-2082
|
2018-10-19 01:38 |
2006-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345245
|
- |
|
id_software
|
quake_3_engine
|
id Software has released patches to address this and other issues.
|
NVD-CWE-Other
|
CVE-2006-2082
|
2018-10-19 01:38 |
2006-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345246
|
- |
|
farsinews
|
farsinews
|
Multiple cross-site scripting (XSS) vulnerabilities in FarsiNews 2.5.3 Pro and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in (a) i…
|
CWE-79
Cross-site Scripting
|
CVE-2006-2084
|
2018-10-19 01:38 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345247
|
- |
|
speedproject
|
speedcommander squeez
|
Multiple buffer overflows in (1) CxAce60.dll and (2) CxAce60u.dll in SpeedProject Squeez 5.10 Build 4460, and SpeedCommander 10.52 Build 4450 and 11.01 Build 4450, allow user-assisted remote attacker…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-2085
|
2018-10-19 01:38 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345248
|
- |
|
juniper
|
junipersetup_control
|
Buffer overflow in JuniperSetupDLL.dll, loaded from JuniperSetup.ocx by the Juniper SSL-VPN Client when accessing a Juniper NetScreen IVE device running IVE OS before 4.2r8.1, 5.0 before 5.0r6.1, 5.1…
|
NVD-CWE-Other
|
CVE-2006-2086
|
2018-10-19 01:38 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345249
|
- |
|
devsyn
|
open_bulletin_board
|
Multiple cross-site scripting (XSS) vulnerabilities in Devsyn Open Bulletin Board (OpenBB) 1.0.6 allow remote attackers to inject arbitrary web script or HTML via (1) the FID parameter in board.php a…
|
NVD-CWE-Other
|
CVE-2006-2088
|
2018-10-19 01:38 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345250
|
- |
|
mysmartbb
|
mysmartbb
|
Multiple cross-site scripting (XSS) vulnerabilities in misc.php in MySmartBB 1.1.x allow remote attackers to inject arbitrary web script or HTML via the (1) id and (2) username parameters.
|
NVD-CWE-Other
|
CVE-2006-2089
|
2018-10-19 01:38 |
2006-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|