Lucene search
K

2981 matches found

NVD
NVD
added 2006/07/25 11:4 p.m.19 views

CVE-2006-3844

Buffer overflow in Quick 'n Easy FTP Server 3.0 allows remote authenticated users to execute arbitrary commands via a long argument to the LIST command, a different issue than CVE-2006-2027...

6.5CVSS7.3AI score0.04035EPSS
Exploits1References6
CVE
CVE
added 2006/07/25 11:0 p.m.61 views

CVE-2006-3844

CVE-2006-3844 / CVE-2006-2027 family involves a buffer overflow in Quick ’n Easy FTP Server (3.0) affecting the server’s handling of long arguments during FTP commands. The issue is described as a buffer overflow in the Unicode/logging processing path, which can allow remote authenticated users t...

6.5CVSS7.5AI score0.04035EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2006/07/25 11:0 p.m.26 views

CVE-2006-3844

Buffer overflow in Quick 'n Easy FTP Server 3.0 allows remote authenticated users to execute arbitrary commands via a long argument to the LIST command, a different issue than CVE-2006-2027...

7.3AI score0.04035EPSS
Exploits1References6
securityvulns
securityvulns
added 2006/05/12 12:0 a.m.49 views

Apple Quick Time Streaming Server buffer overflow

Buffer overflow on RTSP protocol headers parsing...

4.1AI score
Exploits0References1Affected Software1
Prion
Prion
added 2006/04/26 12:6 a.m.25 views

Buffer overflow

Buffer overflow in Unicode processing in the logging functionality in Pablo Software Solutions Quick 'n Easy FTP Server Professional and Lite, probably 3.0, allows remote authenticated users to execute arbitrary code by sending a command with a long argument, which triggers a buffer overflow when...

6.5CVSS8.1AI score0.03891EPSS
Exploits0References4Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2006/04/13 12:0 a.m.49 views

JVN#68630618 QUICK CART cross-site scripting vulnerability

Impact An arbitrary script could be executed on the user's web browser. Solution Products Affected QUICK CART Ver 1 QUICK CART Ver 2 QUICK CART Free QUICK CART Pro QUICK CART Plugin for Movable Type 3.2...

7.2AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2006/04/13 12:0 a.m.17 views

JVN#10222000 QUICK CART OS command injection vulnerability

Impact A remote attacker could execute arbitrary operating system commands on a server running QUICK CART. Solution Products Affected QUICK CART Ver 1 QUICK CART Ver 2 QUICK CART Free QUICK CART Pro QUICK CART Plugin for Movable Type 3.2...

8AI score
Exploits0
Prion
Prion
added 2006/03/25 12:6 a.m.18 views

Code injection

The a Quick 'n Easy Web Server before 3.1.1 and b Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via 1 . dot and 2 space characters in the extension of a URL...

5CVSS7.3AI score0.0208EPSS
Exploits0References12Affected Software2
securityvulns
securityvulns
added 2006/03/25 12:0 a.m.38 views

Secunia Research: Quick 'n Easy/Baby Web Server ASP Code Disclosure Vulnerability

====================================================================== Secunia Research 24/03/2006 - Quick 'n Easy/Baby Web Server ASP Code Disclosure Vulnerability - ====================================================================== Table of Contents Affected...

0.6AI score
Exploits0
Cvelist
Cvelist
added 2006/03/25 12:0 a.m.34 views

CVE-2006-1391

The a Quick 'n Easy Web Server before 3.1.1 and b Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via 1 . dot and 2 space characters in the extension of a URL...

6.8AI score0.0208EPSS
Exploits0References12
CVE
CVE
added 2006/03/25 12:0 a.m.55 views

CVE-2006-1391

The CVE-2006-1391 entry concerns two web servers: Quick 'n Easy Web Server (before 3.1.1) and Baby ASP Web Server (2.7.2). The issue is that an attacker can remotely obtain the source code of ASP files by crafting URLs where the extension uses a dot/space (e.g., manipulating the URL extension), e...

5CVSS6.8AI score0.0208EPSS
Exploits0References12Affected Software2
securityvulns
securityvulns
added 2006/03/24 12:0 a.m.64 views

[SA19306] Quick 'n Easy Web Server ASP Code Disclosure Vulnerability

TITLE: Quick 'n Easy Web Server ASP Code Disclosure Vulnerability SECUNIA ADVISORY ID: SA19306 VERIFY ADVISORY: http://secunia.com/advisories/19306/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Quick and Easy Web Server 3.x...

1.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.23 views

Ubuntu 4.10 / 5.04 : gnupg vulnerability (USN-170-1)

Serge Mister and Robert Zuccherato discovered a weakness of the symmetrical encryption algorithm of gnupg. When decrypting a message, gnupg uses a feature called 'quick scan'; this can quickly check whether the key that is used for decryption is probably the right one, so that wrong keys can be...

5CVSS5.5AI score0.02946EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/12/16 11:0 a.m.14 views

CVE-2005-4292

Cross-site scripting XSS vulnerability in CommerceSQL 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search module parameters, possibly the keywords parameter in the Quick Find feature...

5.9AI score0.01255EPSS
Exploits1References5
CVE
CVE
added 2005/12/16 11:0 a.m.43 views

CVE-2005-4292

CVE-2005-4292 affects CommerceSQL 1.0 and earlier. Vulnerable due to cross-site scripting via unspecified search module parameters, possibly the keywords parameter in Quick Find, enabling remote injection of arbitrary script/HTML. No remediation details or exploit status provided in the connected...

4.3CVSS6.1AI score0.01255EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2005/11/22 12:3 a.m.15 views

CVE-2005-3736

Multiple cross-site scripting XSS vulnerabilities in e-Quick Cart allow remote attackers to inject arbitrary web script or HTML via the 1 strgifttoname parameter in shopgift.asp, 2 strfirstname parameter in shopmaillist.asp, 3 strpid parameter in shopprojectlogin.asp, and 4 Custname parameter in...

4.3CVSS5.8AI score0.01255EPSS
Exploits1References5
NVD
NVD
added 2005/11/22 12:3 a.m.14 views

CVE-2005-3735

Multiple SQL injection vulnerabilities in e-Quick Cart allow remote attackers to execute arbitrary SQL commands via the 1 productid parameter in shopaddtocart.asp, 2 strpemail parameter in shopprojectlogin.asp, and 3 id parameter in shoptellafriend.asp...

7.5CVSS8.5AI score0.01513EPSS
Exploits1References7
CVE
CVE
added 2005/11/22 12:0 a.m.93 views

CVE-2005-3736

CVE-2005-3736 refers to multiple XSS vulnerabilities in the e-Quick Cart application. The disclosed vectors involve user-supplied input parameters: strgifttoname in shopgift.asp, strfirstname in shopmaillist.asp, strpid in shopprojectlogin.asp, and Custname in shoptellafriend.asp. These allow rem...

4.3CVSS6AI score0.01255EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2005/11/22 12:0 a.m.184 views

CVE-2005-3735

CVE-2005-3735 involves multiple SQL injection vulnerabilities in the e-Quick Cart system. The affected components/parameters are: (1) productid in shopaddtocart.asp, (2) strpemail in shopprojectlogin.asp, and (3) id in shoptellafriend.asp. The underlying issue is unsafely constructed SQL queries ...

7.5CVSS9AI score0.01513EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2005/11/22 12:0 a.m.30 views

CVE-2005-3735

Multiple SQL injection vulnerabilities in e-Quick Cart allow remote attackers to execute arbitrary SQL commands via the 1 productid parameter in shopaddtocart.asp, 2 strpemail parameter in shopprojectlogin.asp, and 3 id parameter in shoptellafriend.asp...

8.5AI score0.01513EPSS
Exploits1References7
Rows per page
Query Builder