Lucene search
K

135 matches found

Cvelist
Cvelist
added 2009/02/26 4:0 p.m.22 views

CVE-2008-6297

Cross-site scripting XSS vulnerability in order.php in DHCart allows remote attackers to inject arbitrary web script or HTML via the 1 domain and 2 d1 parameters...

5.7AI score0.01458EPSS
Exploits1References4
Prion
Prion
added 2008/08/27 3:21 p.m.25 views

Null pointer dereference

neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service NULL pointer dereference and crash via vectors related to Digest authentication, Digest domain parameter support, and the parsedomain function...

4.3CVSS6.6AI score0.02266EPSS
Exploits0References18Affected Software1
OSV
OSV
added 2008/08/27 3:21 p.m.2 views

DEBIAN-CVE-2008-3746

neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service NULL pointer dereference and crash via vectors related to Digest authentication, Digest domain parameter support, and the parsedomain function...

4.3CVSS6.5AI score0.02266EPSS
Exploits0References1
Cvelist
Cvelist
added 2008/08/27 3:0 p.m.28 views

CVE-2008-3746

neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service NULL pointer dereference and crash via vectors related to Digest authentication, Digest domain parameter support, and the parsedomain function...

6.2AI score0.02266EPSS
Exploits0References18
CVE
CVE
added 2008/08/27 3:0 p.m.70 views

CVE-2008-3746

CVE-2008-3746 - neon vulnerability details (supported by connected docs) Affected software: neon 0.28.0 through 0.28.2. The issue is described across multiple advisories as a denial of service caused by a NULL pointer dereference in the digest authentication code, related to Digest authentication...

4.3CVSS6.2AI score0.02266EPSS
Exploits0References18Affected Software1
Prion
Prion
added 2008/07/09 12:41 a.m.17 views

Input validation

Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...

6.5CVSS8.2AI score0.03058EPSS
Exploits0References21Affected Software1
Cvelist
Cvelist
added 2008/03/10 5:0 p.m.15 views

CVE-2008-1243

Cross-site scripting XSS vulnerability on the Linksys WRT300N router with firmware 2.00.20, when Mozilla Firefox or Apple Safari is used, allows remote attackers to inject arbitrary web script or HTML via the dyndnsdomain parameter to the default URI...

5.4AI score0.01107EPSS
Exploits1References5
NVD
NVD
added 2008/02/27 7:44 p.m.15 views

CVE-2008-1041

Cross-site scripting XSS vulnerability in mwhois.php in Matt Wilson Matt's Whois MWhois allows remote attackers to inject arbitrary web script or HTML via the domain parameter...

4.3CVSS5.7AI score0.01075EPSS
Exploits1References3
Prion
Prion
added 2007/11/20 7:46 p.m.20 views

Design/Logic Flaw

PHP 5.2.5 and earlier allows context-dependent attackers to cause a denial of service application crash via a long string in 1 the domain parameter to the dgettext function, the message parameter to the 2 dcgettext or 3 gettext function, the msgid1 parameter to the 4 dngettext or 5 ngettext...

2.1CVSS7.3AI score0.01027EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2007/06/30 1:30 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in CMDUSERSTATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vector than CVE-2007-1508...

4.3CVSS6AI score0.01767EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/06/30 1:30 a.m.16 views

CVE-2007-3501

Cross-site scripting XSS vulnerability in CMDUSERSTATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vector than CVE-2007-1508...

4.3CVSS5.6AI score0.01223EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/06/30 1:0 a.m.22 views

CVE-2007-3501

Cross-site scripting XSS vulnerability in CMDUSERSTATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vector than CVE-2007-1508...

5.6AI score0.01223EPSS
Exploits0References6
NVD
NVD
added 2006/12/14 6:28 p.m.21 views

CVE-2006-6548

Multiple cross-site scripting XSS vulnerabilities in cPanel WebHost Manager WHM 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the domain parameter to 1 scripts2/changeemail, 2 scripts2/limitbw, or 3 scripts/rearrangeacct. NOTE: the feature parameter to...

3.5CVSS5.4AI score0.00842EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/05/03 10:0 a.m.18 views

CVE-2006-2153

Cross-site scripting XSS vulnerability in HTMPASSWD in DirectAdmin Hosting Management allows remote attackers to inject arbitrary web script or HTML via the domain parameter...

5.7AI score0.0118EPSS
Exploits0References5
NVD
NVD
added 2006/02/07 6:6 p.m.16 views

CVE-2006-0573

Multiple cross-site scripting XSS vulnerabilies in cPanel 10 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 email parameter to a editquota.html or b dodelpop.html; 2 showtree parameter to c diskusage.html; or the 3 mon, 4 year, 5 target, or 6 domain parameter ...

4.3CVSS5.7AI score0.02526EPSS
Exploits1References9
Rows per page
Query Builder