64 matches found
CVE-2007-4546
Unreal Commander 0.92 build 565 and 573 is affected. The software extracts ZIP entries using Local File Header names instead of Central Directory filenames, enabling an attacker to cause a user to overwrite or create local files via a crafted archive. The description notes the mismatch between Ce...
CVE-2006-4546
CVE-2006-4546 affects Lyris ListManager 8.95. The vulnerability allows remote authenticated users who have administrative privileges for at least one list to add new administrators to any list by modifying the MEMBERS_.List_ parameter. The underlying cause is parameter manipulation that bypasses ...
CVE-2005-4546
CVE-2005-4546 affects eggblog 2.0: the search.php module exposes the server full path to remote attackers via an invalid q parameter, with the description suggesting a possible SQL injection trigger. The concrete impact stated is path disclosure; no additional exploit details are provided in the ...
CVE-2018-4546
CVE-2018-4546 is rejected/not used as stated in the description.