MaxWebPortal < 1.36 XSS and SQL Injection Vulnerabilities

Binary data 2783.prm...

HP-UX PHNE_16091 : s700_800 11.00 r-commands cumulative patch

s700800 11.00 r-commands cumulative patch : Various remote network commands have security defects. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHNE16091. The text itself is copyright C Hewlett-Packard...

CVE-2005-0116

AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl...

PHPlist, file injection vulnerability

PHPlist, http://www.phplist.com is a popular open source newsletter application written in PHP. Recently a file injection vulnerability has been discovered allowing remote attackers to issue arbitrary commands on the hosted machine, as the webserver user. The issue has been resolved in the latest...

CVE-2003-1196

SQL injection vulnerability in viewtopic.asp in VieBoard 2.6 allows remote attackers to execute arbitrary SQL commands via the forumid parameter...

CVE-2002-0220

phpsmssend.php in PhpSmsSend 1.0 allows remote attackers to execute arbitrary commands via an SMS message containing shell metacharacters...

CVE-2001-0473

Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands...

New command execution vulnerability in myPhpAdmin

--/ Product: phpMyAdmin versions = 2.2.0rc3 --/ Problem: Arbitrary remote command execution --/ Severity: High --/ Author: Carl Livitt carl AT ititc DOT com --/ Date: 31 July 2001 ---------------------------------------------- History ------- Further to the excellent research done by Shaun Clowes...

CVE-2001-0174

Buffer overflow in Trend Micro Virus Buster 2001 8.00 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a large "To" address...

[SECURITY] [DSA-002-1] fsh symlink attack

-----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------------ Debian Security Advisory DSA-002-1 [email protected] http://www.debian.org/security/ Wichert Akkerman November 30, 2000 -...

CVE-2000-0592

The CVE-2000-0592 entry documents a buffer overflow in the POP3 service of WinProxy 2.0 and 2.0.1. The vulnerability arises when processing certain POP3 commands (USER, PASS, LIST, RETR, DELE), enabling remote attackers to potentially execute arbitrary commands. Affected software: WinProxy POP3 s...

CVE-1999-0802

Summary: CVE-1999-0802 concerns a buffer overflow in Internet Explorer 5 that enables remote command execution via a malformed Favorites icon. The connected Red Hat and CVE records mirror the same description. The core detail is the vulnerability class (buffer overflow) in the browser component; ...

CVE-1999-0938

MBone SDR Package allows remote attackers to execute commands via shell metacharacters in Session Initiation Protocol SIP messages...

CVE-1999-0181

The CVE-1999-0181 entry concerns the wall daemon, described across connected sources as enabling denial of service, social engineering attacks, or remote command execution. No concrete product versions or patch details are provided in the documents. Red Hat and CVE listings reiterate the same des...

CVE-1999-0181

The wall daemon can be used for denial of service, social engineering attacks, or to execute remote commands...