PT-2008-3453 · Util Linux Ng +1 · Util-Linux-Ng +1

Name of the Vulnerable Software and Affected Versions: util-linux-ng versions 2.14 and earlier Description: The issue allows remote attackers to modify log events, making it easier to hide activities. This is achieved by injecting arguments into the login process, demonstrated by appending an...

PT-2006-7435 · Rediff · Rediff Bol Downloader Activex

Name of the Vulnerable Software and Affected Versions: Rediff Bol Downloader ActiveX OCX control affected versions not specified Description: The issue allows remote attackers to execute arbitrary files and obtain sensitive information, such as usernames and pathnames, by providing a URL in the u...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in DGBook 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name, 2 homepage, 3 email, and 4 address parameters...

CVE-2006-2572

Cross-site scripting XSS vulnerability in index.php in DGBook 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name, 2 homepage, 3 email, and 4 address parameters...

CVE-2005-4136

Cross-site scripting XSS vulnerability in login.php in DRZES HMS 3.2 allows remote attackers to inject arbitrary web script or HTML via the customerEmailAddress parameter...

CVE-2002-0436

sscdsuncourier.pl CGI script in the Sun Sunsolve CD pack allows remote attackers to execute arbitrary commands via shell metacharacters in the email address parameter...