Lucene search
K

3211 matches found

Cvelist
Cvelist
added 2005/10/25 4:0 a.m.20 views

CVE-2005-3308

Multiple cross-site scripting XSS vulnerabilities in Zomplog 3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 comment parameter in detail.php, 3 the username parameter in get.php, and 4 the search parameter in index.php...

5.8AI score0.02143EPSS
Exploits1References8
Packet Storm
Packet Storm
added 2005/08/14 12:0 a.m.34 views

gforgeexec.txt

-------------------------------------------------------------------------- Vendor : Gforge http://gforge.org Product : gforge Affected versions : = 4.0 & Debian pkg 3.1-30 Vulnerability : Input validation flaw Problem-Type : remote Severity : High, arbitrary command execution Author : Filippo Spi...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2005/07/10 4:0 a.m.22 views

CVE-2005-2191

Multiple cross-site scripting XSS vulnerabilities in Comersus shopping cart allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter to comersusbackofficelistAssignedPricesToCustomer.asp or 2 message parameter to comersusbackofficemessage.asp...

5.7AI score0.01208EPSS
Exploits0References4
CVE
CVE
added 2005/06/28 4:0 a.m.51 views

CVE-2002-1899

IceWarp Web Mail versions 3.3.3 and 3.4.5 are affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via the Full Name (addressname) parameter. The connected sources confirm the affected product and the vulnerable input, but do n...

4.3CVSS6AI score0.01255EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2005/05/02 4:0 a.m.16 views

CVE-2005-1292

Multiple cross-site scripting XSS vulnerabilities in CartWIZ ASP Cart allow remote attackers to inject arbitrary web script or HTML via the idProduct parameter to 1 tellAFriend.asp or 2 addToWishlist.asp, redirect parameter to 3 access.asp or 4 login.asp, message parameter to 5 login.asp or 6...

4.3CVSS5.8AI score0.01774EPSS
Exploits1References9
Cvelist
Cvelist
added 2005/04/26 4:0 a.m.22 views

CVE-2005-1292

Multiple cross-site scripting XSS vulnerabilities in CartWIZ ASP Cart allow remote attackers to inject arbitrary web script or HTML via the idProduct parameter to 1 tellAFriend.asp or 2 addToWishlist.asp, redirect parameter to 3 access.asp or 4 login.asp, message parameter to 5 login.asp or 6...

5.8AI score0.01774EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2005/02/17 12:0 a.m.10 views

PT-2005-1333 · Biborb · Biborb

Name of the Vulnerable Software and Affected Versions: BibORB versions 1.3.2 and earlier Description: The issue allows remote attackers to delete arbitrary files via a Delete action and .. dot dot sequences in the database name parameter in index.php. Recommendations: For BibORB versions 1.3.2 an...

4CVSS6.4AI score0.04725EPSS
Exploits2References7
Cvelist
Cvelist
added 2003/11/21 5:0 a.m.29 views

CVE-2003-0942

Buffer overflow in Web Agent Administration service in web-tools for SAP DB before 7.4.03.30 allows remote attackers to execute arbitrary code via a long Name parameter to waadmin.wa...

7.9AI score0.0266EPSS
Exploits1References1
securityvulns
securityvulns
added 2003/11/03 12:0 a.m.32 views

Choutcast buffer overflow

Buffer overflow on oversized icy-name and icy-url parameters...

4.8AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.26 views

CVE-2002-0947

Buffer overflow in rwcgi60 CGI program for Oracle Reports Server 6.0.8.18.0 and earlier, as used in Oracle9iAS and other products, allows remote attackers to execute arbitrary code via a long database name parameter...

9.6AI score0.09542EPSS
Exploits0References7
exploitpack
exploitpack
added 2000/03/10 12:0 a.m.20 views

Mirabilis ICQ 0.9998.0 a2000.0 A99a - Remote Denial of Service

Mirabilis ICQ 0.9998.0 a2000.0 A99a - Remote Denial of Service // source: https://www.securityfocus.com/bid/1463/info The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter. / ICQ...

0.1AI score
Exploits0
Rows per page
Query Builder