Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2006/04/16 12:0 a.m.25 views

PAJAX < 0.5.2 Multiple Vulnerabilities

The remote host is running PAJAX, a PHP library for remote asynchronous objects in JavaScript. The version of PAJAX installed on the remote host fails to validate input to the 'pajax/pajaxcalldispatcher.php' script before using it in a PHP 'eval' function. An unauthenticated attacker can exploit...

7.5CVSS6AI score0.36127EPSS
Exploits5References4
Prion
Prion
added 2006/04/13 10:2 p.m.14 views

Directory traversal

Directory traversal vulnerability in pajaxcalldispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to read arbitrary files via the $className variable...

5CVSS6.9AI score0.01915EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2006/04/13 10:2 p.m.12 views

CVE-2006-1789

Directory traversal vulnerability in pajaxcalldispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to read arbitrary files via the $className variable...

5CVSS6.7AI score0.01915EPSS
Exploits0References8
Cvelist
Cvelist
added 2006/04/13 10:0 p.m.19 views

CVE-2006-1789

Directory traversal vulnerability in pajaxcalldispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to read arbitrary files via the $className variable...

6.7AI score0.01915EPSS
Exploits0References8
CVE
CVE
added 2006/04/13 10:0 p.m.41 views

CVE-2006-1789

PAJAX 0.5.1 and earlier expose a directory traversal vulnerability in pajax_call_dispatcher.php that lets an unauthenticated attacker read arbitrary files via the $className variable. This issue is corroborated across multiple sources (NVD/Nessus, CVE-2006-1789). The Nessus plugin explicitly grou...

5CVSS6.7AI score0.01915EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2006/04/13 10:0 p.m.59 views

CVE-2006-1551

PAJAX

7.5CVSS7.8AI score0.36127EPSS
Exploits5References8Affected Software1
Cvelist
Cvelist
added 2006/04/13 10:0 p.m.33 views

CVE-2006-1551

Eval injection vulnerability in pajaxcalldispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to execute arbitrary code via the 1 $method and 2 $args parameters...

7.8AI score0.36127EPSS
Exploits5References8
Rows per page
Query Builder