Lucene search
K

2883 matches found

Prion
Prion
added 2006/01/06 11:3 a.m.11 views

Remote file inclusion

PHP remote file include vulnerability in 1 include/templates/categories/default.php and 2 certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote attackers to execute arbitrary code via a URL in the catalogDocumentRoot parameter...

7.5CVSS8.2AI score0.04414EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2006/01/04 1:3 a.m.20 views

CVE-2006-0076

PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...

7.5CVSS7.4AI score0.03076EPSS
Exploits1References6
Prion
Prion
added 2006/01/04 1:3 a.m.24 views

Remote file inclusion

PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...

7.5CVSS7.7AI score0.03076EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2006/01/03 10:3 p.m.14 views

CVE-2006-0064

PHP remote file include vulnerability in includes/orderSuccess.inc.php in CubeCart allows remote attackers to execute arbitrary PHP code via a URL in the globrootDir parameter...

7.5CVSS7.5AI score0.02406EPSS
Exploits0References2
Cvelist
Cvelist
added 2006/01/03 10:0 p.m.23 views

CVE-2006-0064

PHP remote file include vulnerability in includes/orderSuccess.inc.php in CubeCart allows remote attackers to execute arbitrary PHP code via a URL in the globrootDir parameter...

7.5AI score0.02406EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2005/12/21 1:0 a.m.21 views

CVE-2005-4439

Removed by vendor...

7.8CVSS6.7AI score0.06129EPSS
Exploits1
Cvelist
Cvelist
added 2005/12/13 11:0 a.m.19 views

CVE-2005-4206

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a frame and causes it to...

6.2AI score0.02091EPSS
Exploits1References5
Cvelist
Cvelist
added 2005/12/01 11:0 a.m.19 views

CVE-2005-3955

Multiple cross-site scripting XSS vulnerabilities in MagpieRSS 7.1, as used in a blogBuddiesv 0.3, b Jaws 0.6.2, and possibly other products, allow remote attackers to inject arbitrary web script or HTML via the 1 url parameter to a magpiedebug.php and 2 rssurl parameter to b magpieslashbox.php a...

5.9AI score0.05581EPSS
Exploits1References15
Saint
Saint
added 2005/11/30 12:0 a.m.23 views

RSA SecurID Web Agent for IIS redirect buffer overflow

Added: 11/30/2005 CVE: CVE-2005-4734 BID: 26424 OSVDB: 20151 Background RSA SecurID Web Agent for IIS provides access control for IIS web servers using one-time authentication tokens. Problem A buffer overflow in IISWebAgentIF.dll could allow a remote attacker to execute arbitrary commands using ...

6.4CVSS7.9AI score0.54485EPSS
Exploits8
NVD
NVD
added 2005/11/29 11:3 a.m.18 views

CVE-2005-3859

PHP remote file inclusion vulnerability in q-news.php in Q-News 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter...

7.5CVSS7.5AI score0.03442EPSS
Exploits1References6
NVD
NVD
added 2005/11/23 1:3 a.m.13 views

CVE-2005-3775

PHP remote file inclusion vulnerability in pollvote.php in PollVote allows remote attackers to include arbitrary files via a URL in the pollname parameter...

7.5CVSS6.8AI score0.01686EPSS
Exploits0References5
Cvelist
Cvelist
added 2005/11/23 1:0 a.m.15 views

CVE-2005-3775

PHP remote file inclusion vulnerability in pollvote.php in PollVote allows remote attackers to include arbitrary files via a URL in the pollname parameter...

6.8AI score0.01686EPSS
Exploits0References5
Cvelist
Cvelist
added 2005/06/21 4:0 a.m.23 views

CVE-2002-1702

Cross-site scripting vulnerability XSS in DeltaScripts PHP Classifieds 6.0.5 allows remote attackers to execute arbitrary script as other users via the URL parameter...

6.7AI score0.01733EPSS
Exploits1References3
NVD
NVD
added 2005/06/16 4:0 a.m.11 views

CVE-2005-1965

PHP remote file inclusion vulnerability in siteframe.php for Broadpool Siteframe allows remote attackers to execute arbitrary code via a URL in the LOCALPATH parameter...

7.5CVSS7.6AI score0.04046EPSS
Exploits1References6
Cvelist
Cvelist
added 2005/02/26 5:0 a.m.17 views

CVE-2004-1710

page.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the url parameter...

7.7AI score0.02057EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2005/01/24 5:0 a.m.22 views

CVE-2005-0103

PHP remote file inclusion vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to execute arbitrary PHP code by modifying a URL parameter to reference a URL on a remote web server that contains the code...

7.5CVSS6.3AI score0.02342EPSS
Exploits0References1
NVD
NVD
added 2004/08/06 4:0 a.m.13 views

CVE-2004-1710

page.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the url parameter...

7.5CVSS7.7AI score0.02057EPSS
Exploits0References3
CVE
CVE
added 2004/07/21 4:0 a.m.53 views

CVE-2004-0705

CVE-2004-0705 affects Bugzilla 2.16.x before 2.16.6 and Bugzilla 2.18 before 2.18rc1. The issue is multiple cross-site scripting (XSS) vulnerabilities in six CGI scripts (editcomponents.cgi, editgroups.cgi, editmilestones.cgi, editproducts.cgi, editusers.cgi, editversions.cgi) that allow remote a...

6.8CVSS6.2AI score0.0137EPSS
Exploits0References4
securityvulns
securityvulns
added 2003/11/03 12:0 a.m.27 views

Choutcast buffer overflow

Buffer overflow on oversized icy-name and icy-url parameters...

4.8AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2002/05/17 12:0 a.m.13 views

Hosting Controller 1.x - DSNManager Directory Traversal

Hosting Controller 1.x - DSNManager Directory Traversal source: https://www.securityfocus.com/bid/4759/info Hosting Controller is an application which consolidates all hosting tasks into one interface. Hosting Controller runs on Microsoft Windows operating systems. The DSNManager script does not...

0.2AI score
Exploits0
Rows per page
Query Builder