7 matches found
EUVD-2004-2194
Malware in sbrugna...
EUVD-2004-2191
Malware in sbrugna...
CVE-2004-2199
Cross-site scripting XSS vulnerability in DUware DUclassified 4.0 allows remote attackers to inject arbitrary web script or HTML via the message text...
CVE-2004-2202
CVE-2004-2202 affects DUware DUclassified 4.0–4.2. The vulnerability arises from SQL injection in adDetail.asp via (1) cat_id or (2) sub_id parameters, and in the login form via the password parameter, enabling remote attackers to bypass authentication and execute commands on the server’s underly...
CVE-2004-2199
CVE-2004-2199 is a cross-site scripting (XSS) vulnerability in DUware DUclassified 4.0. The issue arises from how the application handles messages, allowing an attacker to inject arbitrary web script or HTML via the message text. The vulnerability is remote and could enable script execution in th...
CVE-2004-2202
Multiple SQL injection vulnerabilities in DUware DUclassified 4.0 through 4.2 allows remote attackers to bypass authentication and execute other commands on the server's underlying database via the 1 catid or 2 subid parameters in adDetail.asp, or 2 the password parameter in the login form...
CVE-2004-2199
Cross-site scripting XSS vulnerability in DUware DUclassified 4.0 allows remote attackers to inject arbitrary web script or HTML via the message text...