Lucene search
K

1148 matches found

NVD
NVD
added 2005/12/31 5:0 a.m.9 views

CVE-2005-4677

SQL injection vulnerability in additionalimages.php aka the Additional Images module before 1.14 in osCommerce allows remote attackers to execute arbitrary SQL commands via the productsid parameter to productinfo.php...

7.5CVSS8.4AI score0.01381EPSS
Exploits0References7
Cvelist
Cvelist
added 2005/12/05 12:0 a.m.19 views

CVE-2005-4003

Multiple SQL injection vulnerabilities in Absolute Shopping Package Solutions ASPS Shopping Cart Professional 2.9d and earlier, and Lite 2.1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 srchproductname parameter to advsearch.asp and 2 bsearch parameter to...

8.1AI score0.01049EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2005/10/18 4:0 a.m.64 views

CVE-2005-3256

The key selection dialogue in Enigmail before 0.92.1 can incorrectly select a key with a user ID that does not have additional information, which allows parties with that key to decrypt the message...

5CVSS6.2AI score0.01782EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2005/10/12 1:4 p.m.4 views

CVE-2005-2937

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-3663, CVE-2005-3664. Reason: this candidate was intended for one issue, but multiple advisories used this candidate for different issues. Notes: All CVE users should consult CVE-2005-3663 and CVE-2005-3664 to determine which ...

7.5CVSS5.9AI score0.04325EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/06/03 12:0 a.m.28 views

LiteWeb Web Server protection bypass

It's possible to bypass password protection by adding additional slashes to URL...

2AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2005/04/14 4:0 a.m.26 views

CVE-2004-0637

Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible...

9AI score0.17824EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/04/13 4:0 a.m.19 views

CVE-2005-1088

Unknown vulnerability in DameWare NT Utilities 4.8 and earlier, and Mini Remote Control 4.8 and earlier, allows local users to gain additional rights...

6.6AI score0.00346EPSS
Exploits0References6
CVE
CVE
added 2005/04/13 4:0 a.m.50 views

CVE-2005-1088

The CVE-2005-1088 issue affects DameWare NT Utilities (v4.8 and earlier) and DameWare Mini Remote Control (v4.8 and earlier), describing a local privilege escalation. Multiple sources indicate an unspecified or local privilege-escalation vulnerability that allows an authenticated, non-administrat...

7.2CVSS6.6AI score0.00346EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2005/02/08 5:0 a.m.21 views

CVE-2004-1394

The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the execattr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges...

6.8AI score0.00337EPSS
Exploits0References7
NVD
NVD
added 2003/08/18 4:0 a.m.15 views

CVE-2003-0458

Unknown vulnerability in HP NonStop Server D40.00 through D48.03, and G01.00 through G06.20, allows local users to gain additional privileges...

4.6CVSS6.5AI score0.00471EPSS
Exploits0References2
Cvelist
Cvelist
added 2003/07/17 4:0 a.m.17 views

CVE-2003-0458

Unknown vulnerability in HP NonStop Server D40.00 through D48.03, and G01.00 through G06.20, allows local users to gain additional privileges...

6.5AI score0.00471EPSS
Exploits0References2
securityvulns
securityvulns
added 2002/07/03 12:0 a.m.34 views

Root directory access in Cisco Secure ACS

By adding additional slah to URL after hostname it's possible to address root folder...

1.6AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.19 views

CVE-2001-0560

Buffer overflow in Vixie cron 3.0.1-56 and earlier could allow a local attacker to gain additional privileges via a long username 20 characters...

6.8AI score0.00505EPSS
Exploits1References8
CVE
CVE
added 2002/03/09 5:0 a.m.43 views

CVE-2001-0611

Becky!

7.5CVSS7.8AI score0.01969EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2002/02/02 5:0 a.m.46 views

CVE-2001-1003

Affected software : Respondus 1.1.2 for WebCT. Vulnerability : weak encryption used to remember usernames and passwords stored in WEBCT.SVR. Impact : local users who can read WEBCT.SVR can decrypt passwords and gain additional privileges. Remediation : not specified in the provided documents.

4.6CVSS6.9AI score0.00352EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2001/08/22 4:0 a.m.13 views

CVE-2001-0578

Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command...

4.6CVSS6.8AI score0.00672EPSS
Exploits0References3
NVD
NVD
added 2001/08/14 4:0 a.m.21 views

CVE-2001-0565

Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option...

4.6CVSS6.9AI score0.01282EPSS
Exploits1References5
NVD
NVD
added 2001/08/02 4:0 a.m.22 views

CVE-2001-0594

kcmsconfigure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument...

4.6CVSS7.1AI score0.00953EPSS
Exploits1References5
Cvelist
Cvelist
added 2001/07/27 4:0 a.m.22 views

CVE-2001-0587

deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command...

7.1AI score0.00518EPSS
Exploits1References4
securityvulns
securityvulns
added 2001/03/26 12:0 a.m.37 views

Проблема в Raptor (http proxing)

При разрешенном HTTP-прокси проксируются не только внутренние запросы наружу, но и наоборот, кроме того, проксируется ряд дополнительных портов...

7.2AI score
Exploits0References1Affected Software1
Rows per page
Query Builder