CVE-2006-1481

SQL injection vulnerability in search.php in PHP Ticket 0.71 allows remote authenticated users to execute arbitrary SQL commands and obtain usernames and passwords via the frmsearchin parameter...

CVE-2006-1387

TWiki 4.0, 4.0.1, and 20010901 through 20040904 allows remote authenticated users with edit rights to cause a denial of service infinite recursion leading to CPU and memory consumption via INCLUDE by URL statements that form a loop, such as a page that includes itself...

CVE-2006-1383

Directory traversal vulnerability in Baby FTP Server BabyFTP 1.24 allows remote authenticated users to determine existence of files outside the intended document root via unspecified manipulations, which generate different error messages depending on whether a file exists or not...

CVE-2005-4738

IBM DB2 Universal Database (UDB) 8.1.0 prior to ESE AIX 5765F4100 is vulnerable to privilege escalation because it does not verify execute privileges for objects created from routines, allowing remote authenticated users to gain privileges. Affected product/version: IBM DB2 UDB 8.1.0 (ESE AIX 576...

CVE-2005-3526

Buffer overflow in the IMAP daemon in Ipswitch Collaboration Suite 2006.02 and earlier allows remote authenticated users to execute arbitrary code via a long FETCH command...

CVE-2006-1087

PHP-Stats 0.1.9.1 and earlier are affected by a Direct static code injection in the modify_config action of admin.php. The vulnerability arises from unsafely storing the option_new[compatibility_mode] value in config.php, allowing an attacker with remote authenticated admin access to execute arbi...

CVE-2005-3712

Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes...

CVE-2006-0936

Free Host Shop Website Generator 3.3 allows remote authenticated users with administrative privileges to upload and execute arbitrary files via a formname parameter with a filename containing a dangerous file extension and a trailing %00...

CVE-2006-0936

The CVE-2006-0936 entry concerns Free Host Shop Website Generator 3.3. It describes a vulnerability where remote authenticated users with administrative privileges can upload and execute arbitrary files via a formname parameter using a filename containing a dangerous extension and a trailing %00....

Kerio Personal Firewall 2.1.4 - Remote Authentication Packet Overflow (Metasploit)

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

Kerio Personal Firewall <= 2.1.4 Remote Authentication Packet Overflow

No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...

Kerio Personal Firewall 2.1.4 - Remote Authentication Packet Overflow (Metasploit)

Kerio Personal Firewall 2.1.4 - Remote Authentication Packet Overflow Metasploit This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same licens...

Pentacle In-Out Board 6.03 - login.asp Remote Authentication Bypass

Pentacle In-Out Board 6.03 - login.asp Remote Authentication Bypass Pentacle In-Out Board function ptxpl ifdocument.xpl.victim.value=="" alert"Please enter site!"; return false; ifconfirm"Are you sure?" xpl.action="http://"+document.xpl.victim.value+"/login.asp";...

Pentacle In-Out Board <= 6.03 (login.asp) Remote Auth Bypass

Exploit for unknown platform in category web applications ============================================================ Pentacle In-Out Board Pentacle In-Out Board function ptxpl ifdocument.xpl.victim.value=="" alert"Please enter site!"; return false; ifconfirm"Are you sure?"...

Cisco IOS AAA RADIUS Long Username Authentication Bypass (CSCee45312)

The remote host is a CISCO router containing a version of IOS that contains a faulty RADIUS implementation which may lead to an authentication bypass vulnerability. An attacker may exploit this problem to gain unauthorized access to the service. C Tenable Network Security, Inc. include"compat.inc...

CVE-2006-0424

CVE-2006-0424 affects BEA WebLogic Server and WebLogic Express, specifically versions 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7. The vulnerability permits remote authenticated guest users to read the server log and obtain sensitive configuration information. The available connected so...

CVE-2005-4851

eZ publish 3.4.4 through 3.7 before 20050722 applies certain permissions on the node level, which allows remote authenticated users to bypass the original permissions on embedded objects in XML fields and read these objects...

CVE-2005-4740

IBM DB2 Universal Database UDB 810 before version 8 FixPak 10 allows remote authenticated users to cause a denial of service db2jd service crash by "connecting from a downlevel client."...

CVE-2005-4800

Direct static code injection vulnerability in Yet Another PHP Image Gallery YaPIG 0.95b and earlier allows remote authenticated administrators to inject arbitrary PHP code via the TestGallery parameter in a modinfo action to modifygallery.php, which inserts the code into guidinfo.php. NOTE: this...

CVE-2004-2565

Multiple directory traversal vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, when the administrative IP address restrictions have been modified from the default, allow remote authenticated users to read arbitrary files via 1 a ".." dot dot backslash i...