4658 matches found
SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting
The Virtual Keyboard plugin for SquirrelMail 1.2.6/1.2.7 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. id: CVE-2002-1131 info: name: SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting author: dhiyaneshDk,s4e-io severity: high description:...
SUSE CVE-2002-0657
Buffer overflow in OpenSSL 0.9.7 before 0.9.7-beta3, with Kerberos enabled, allows attackers to execute arbitrary code via a long master key...
EUVD-2005-2019
Malware in sbrugna...
EUVD-2005-1920
Malware in sbrugna...
EUVD-2007-2285
Malware in sbrugna...
EUVD-2006-4427
Malware in sbrugna...
EUVD-2007-0395
Malware in sbrugna...
EUVD-2008-2882
Malware in sbrugna...
CVE-2002-1296
creationtimestamp| type| source ---|---|--- 2025-08-31 03:01:21+00:00| seen| MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d...
CVE-2002-1899
Cross-site scripting XSS vulnerability in IceWarp Web Mail 3.3.3 and 3.4.5 allows remote attackers to inject arbitrary web script or HTML via the "Full Name" addressname parameter...
CVE-2002-1909
Click2Learn Ingenium Learning Management System 5.1 and 6.1 stores the hashed administrative password in a config.txt file under the htdocs directory, which allows remote attackers to obtain the administrative password...
CVE-2002-1820
register.php in Ultimate PHP Board UPB 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a."...
CVE-2002-1824
Microsoft Internet Explorer 6.0, when handling an expired CA-CERT in a webserver's certificate chain during a SSL/TLS handshake, does not prompt the user before searching for and finding a newer certificate, which may allow attackers to perform a man-in-the-middle attack. NOTE: it is not clear...
CVE-2002-1950
Cross-site scripting XSS vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the 1 the email parameter of add.php or 2 the banner URL banurl parameter in the main list...
CVE-2002-1826
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory...
CVE-2002-1583
Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument...
CVE-2002-1808
Cross-site scripting XSS vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic...
CVE-2002-1917
CRLF injection vulnerability in the "User Profile: Send Email" feature in Geeklog 1.35 and 1.3.5sr1 allows remote attackers to obtain e-mail addresses by injecting a CRLF into the Subject field and adding a BCC mail header...
CVE-2002-1980
Buffer overflow in Volume Manager daemon vold of Sun Solaris 2.5.1 through 8 allows local users to execute arbitrary code via unknown attack vectors...
CVE-2002-1795
Cross-site scripting XSS vulnerability in connect.asp in Microsoft Terminal Services Advanced Client TSAC ActiveX control allows remote attackers to inject arbitrary web script or HTML via unknown vectors...