WordPress Dixon theme <= 1.4.2.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Dixon versions = 1.4.2.1...

CVE-2010-2476

syscp 1.4.2.1 allows attackers to add arbitrary paths via the documentroot of a domain by appending a colon to it and setting the open basedir path to use that domain documentroot...

WordPress FOX – Currency Switcher Professional for WooCommerce plugin <= 1.4.2.1 - Unauthenticated Arbitrary Shortcode Execution vulnerability

Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin FOX versions = 1.4.2.1...

WordPress plugin The FOX 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A code injection vulnerability...

THELIA 1.4.2.1Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/37855/info THELIA is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the brows...

Fedora Core 5 : mutt-1.4.2.1-7.fc5 (2006-1061)

Tue Oct 24 2006 Miroslav Lichvar 5:1.4.2.1-7.fc5 - fix insecure temp file creation on NFS 211085, CVE-2006-5297 - Thu Jun 29 2006 Miroslav Lichvar 5:1.4.2.1-6.3.fc5 - fix a buffer overflow when processing IMAP namespace 197152, CVE-2006-3242 Note that Tenable Network Security has extracted the...

DEBIAN-CVE-2006-3242

Stack-based buffer overflow in the browsegetnamespace function in imap/browse.c of Mutt 1.4.2.1 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via long namespaces received from the IMAP server...

CVE-2004-1428

CVE-2004-1428 affects ArGoSoft FTP Server before 1.4.2.1. The authentication error message differs for nonexistent usernames, enabling remote attackers to enumerate valid usernames. This information disclosure can facilitate dictionary attacks against the remote host. A fix is available: upgrade ...

PT-2004-2343 · Argosoft · Argosoft Ftp

Name of the Vulnerable Software and Affected Versions: ArGoSoft FTP versions prior to 1.4.2.1 Description: The issue allows remote attackers to determine valid usernames by generating an error message if the user name does not exist instead of prompting for a password. Recommendations: For versio...