13538 matches found
PHPjournaler index.php readold Parameter SQL Injection - Ver2 (CVE-2006-0066)
An SQL injection vulnerability has been reported in PHPjournaler. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
OPENi-CMS Plugin index.php oi_dir Parameter PHP Code Execution - Ver2 (CVE-2007-0881)
A code execution vulnerability has been reported inSeitenschutz plugin for OPENi-CMS 1.0. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
PHPLiveHelper global.php abs_path Parameter PHP Code Execution - Ver2 (CVE-2006-4051)
A code execution vulnerability has been reported in Turnkey Web Tools PHP Live Helper. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SaveWebPortal SITE_Path Parameter PHP Code Execution - Ver2 (CVE-2005-2687)
A code execution vulnerability has been reported in SaveWebPortal. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow - Ver2 (CVE-2008-0639)
There exists a buffer overflow vulnerability in the way Novel Client for Windows handles RPC requests. The vulnerability is due to lack of boundary protection while processing RPC requests. A remote unauthenticated attacker may exploit this vulnerability to cause a denial of service condition or...
InTouch index.php user Parameter SQL Injection - Ver2 (CVE-2006-0088)
An SQL injection vulnerability has been reported in inTouch. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Internet Explorer Null Byte Information Disclosure (MS12-010) - Ver2 (CVE-2012-0012)
An information disclosure vulnerability has been reported in Internet Explorer. The vulnerability occurs during certain processes, in which Internet Explorer incorrectly allows attackers to view content from the process memory. A remote attacker may exploit this issue by enticing target users to...
phpMYAdmin goto Parameter PHP Code Execution - Ver2 (CVE-2001-0478)
A code execution vulnerability has been reported in phpMYAdmin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Mozilla Products Graphics and XML Features Integer Overflows - Ver2 (CVE-2006-0297)
An integer overflow vulnerability has been reported in multiple versions of Mozilla products. The vulnerability is due to improper validation of XML property values when parsing images in SVG format. A remote attacker may leverage the vulnerability by enticing the victim to visit a malicious web...
PollMentor pollmentorres.asp id Parameter SQL Injection - Ver2 (CVE-2007-0984)
An SQL injection vulnerability has been reported in PollMentor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Benders Calendar index.php this_day Parameter SQL Injection - Ver2 (CVE-2006-0252)
An SQL injection vulnerability has been reported in Benders Calendar. A remote attacker could trigger this vulnerability via the year, month and day parameters. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
FlashGameScript index.php func Parameter PHP Code Execution - Ver2 (CVE-2007-1078)
A code execution vulnerability has been reported in FlashGameScript. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle 9i TNS Listener SERVICE_NAME Remote Buffer Overflow - Ver2 (CVE-2002-0965)
A buffer overflow vulnerability has been reported in TNS Listener for Oracle 9i Database Server on Windows systems. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Mozilla Firefox Javascript Large Regular Expression Parsing Memory Corruption - Ver2 (CVE-2006-1737)
A memory corruption vulnerability has been reported in Mozilla Firefox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
MySQL Commander dbopen.php home Parameter PHP Code Execution - Ver2 (CVE-2007-1439)
A code execution vulnerability has been reported in bitesser MySQL Commander. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
VEGO Web Forum index.php theme_id Parameter SQL Injection - Ver2 (CVE-2006-0065)
An SQL injection vulnerability has been reported in VEGO Web Forum. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Saphplesson id Parameter SQL Injection - Ver2 (CVE-2006-2835)
An SQL injection vulnerability has been reported in Saphplesson. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)
A denial-of-service vulnerability has been reported in wu-ftpd. A remote attacker could trigger this vulnerability via a glob pattern with a large number of wildcard characters as demonstrated using the dir command. Successful exploitation of this vulnerability would allow a remote attacker to...
Symantec Web Gateway ldap_latest.php Blind SQL Injection - Ver2 (CVE-2012-2961)
An SQL injection vulnerability has been reported in Symantec Web Gateway. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Microsoft IIS ASP Handling Code Execution (MS08-006) - Ver2 (CVE-2008-0075)
Microsoft Internet Information Services IIS is a multi-featured server product that ships with all versions of Microsoft. The product provides FTP, SMTP, NNTP and HTTP services. The HTTP component, known as the WWW Publishing Service, allows for the serving of dynamic content, notably in the form...
Microsoft OpenType Font Format Driver Index Code Execution (MS10-091) - Ver2 (CVE-2010-3956)
OpenType is a font format developed jointly by Microsoft and Adobe as an extension of Apple's TrueType font format. A remote code execution vulnerability has been reported in the way Microsoft Windows OpenType Font OTF format driver improperly parses specially crafted OpenType fonts. A remote...
Internet Explorer iepeers.dll Remote Code Execution - Ver2 (CVE-2010-0806)
Microsoft Internet Explorer is the most widely used Internet browser. A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer handles specific attributes. To trigger this issue, an attacker may create a maliciou...
IRSR pageheaderdefault.inc.php sysSessionPath Parameter PHP Code Execution - Ver2 (CVE-2006-4237)
A code execution vulnerability has been reported in Invisionix Roaming System Remote IRSR. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
GeoBlog viewcat.php cat Parameter SQL Injection - Ver2 (CVE-2006-0249)
An SQL injection vulnerability has been reported in BitDamaged geoBlog MOD1.0. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
System V TTYPROMPT Buffer Overflow - Ver2 (CVE-2001-0797)
A buffer overflow vulnerability has been reported in various System V based operating systems. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CA BrightStor Arcserve Media Server Stack Buffer Overflow - Ver2 (CVE-2007-2139)
A buffer overflow vulnerability has been reported in CA BrightStor ARCserve Media Server. The vulnerability is due to insufficient boundary checking when processing crafted strings supplied in SUN RPC requests. Successful exploitation of this vulnerability could allow a remote attacker to execute...
Knusperleicht Shoutbox index.php sb_include_path Parameter PHP Code Execution - Ver2 (CVE-2006-3989)
A code execution vulnerability has been reported in Knusperleicht Shoutbox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
MS-SQL Server Protocol - General Settings - Ver2 (CVE-2002-1123)
...
AINS function.inc.php path Parameter PHP Code Execution - Ver2 (CVE-2007-0570)
A code execution vulnerability has been reported in Johannes Gijsbers Ad Fundum Integratable News Script AINS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution - Ver2 (CVE-2007-1785)
Computer Associates BrightStor ARCserve Backup products offer data protection for distributed servers, clients, databases and applications. They provide centralized control over a series of distributed operations including Backup and Restore, Data Migration, and Threat Management. There exists a...
Venom Board post.php3 topic_id Parameter SQL Injection - Ver2 (CVE-2006-0160)
An SQL injection vulnerability has been reported in Venom Board. A remote attacker could exploit this vulnerability by sending specaially crafted parent root and topicid parameters to post.php. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL...
Oracle Database Server Network Authentication AUTH_SESSKEY Buffer Overflow - Ver2 (CVE-2009-1979)
Oracle Database Server is an enterprise-level relational database application suite. A buffer overflow vulnerability exists in the Oracle Database server, the vulnerability is due to an error in the Oracle Database server that fails to sufficiently validate the length field of the AUTHSESSKEY...
Oracle 9i HTTP Server soapConfig.xml Access Information Disclosure - Ver2 (CVE-2002-0568)
An information disclosure vulnerability has been reported in Oracle 9i Application Server. A remote attacker could trigger this vulnerability by requesting XSQLConfig.xml or soapConfig.xml through a virtual directory. Successful exploitation of this vulnerability would allow a remote attacker to...
MyPhPim calendar.php3 cal_id Parameter SQL Injection - Ver2 (CVE-2006-0167)
An SQL injection vulnerability has been reported in MyPhPim. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Sun Java Web Start JRE Buffer Overflow - Ver2 (CVE-2007-3655)
A buffer overflow vulnerability has been reported in Sun JRE. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer mergeAttribues Property Handling Memory Corruption - Ver2 (CVE-2007-0945)
Microsoft Internet Explorer is the most widely used Internet browser. Multiple remote code execution vulnerabilities have been reported in Microsoft Internet Explorer. The vulnerabilities are due to several memory corruption errors in Microsoft Internet Explorer when instantiating the vulnerable...
Internet Explorer Improper Ref Counting Use After Free (MS12-077) - Ver2 (CVE-2012-4787)
A remote code execution vulnerability has been reported in Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a target user to ope...
ScozBook auth.php adminname Parameter SQL Injection - Ver2 (CVE-2006-0079)
An SQL injection vulnerability has been reported in ScozNet ScozBook BETA. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Vmist Downstat art Parameter PHP Code Execution - Ver2 (CVE-2006-4827)
A code execution vulnerability has been reported in Vmist Downstat. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle 9i HTTP Server Globals.JSA Access Information Disclosure - Ver2 (CVE-2002-0562)
An information disclosure vulnerability has been reported in Oracle 9i Application Server. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Mozilla Firefox Event Handler Privilege Escalation - Ver2 (CVE-2007-3737)
A privilege escalation vulnerability has been reported in Mozilla Firefox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Mozilla Firefox Style Engine Position Change Memory Corruption - Ver2 (CVE-2006-0294)
A memory corruption vulnerability has been reported in Mozilla Firefox. A remote attacker could trigger this vulnerability by changing an element's style from position:relative to position:static which causes Gecko to operate on freed memory. Successful exploitation of this vulnerability could...
Oracle Java MBeanInstantiator.findClass Remote Code Execution - Ver2 (CVE-2013-0422)
A code execution vulnerability has been reported in Oracle Java. The vulnerability is due to an access control failure in the com.sun.jmx.mbeanserver package and in the invokeWithArguments method of the java.lang.invoke.MethodHandle class. A remote attacker could trigger this vulnerability by usi...
Flashchat aedating4CMS.php dirinc Parameter PHP Code Execution - Ver2 (CVE-2006-4583)
A code execution vulnerability has been reported in FlashChat. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Indexing Service ActiveX Memory Corruption (MS09-057) - Ver2 (CVE-2009-2507)
The Microsoft Windows Indexing Service is a base service that extracts content from files and constructs an indexed catalog to facilitate efficient and rapid searching. A remote code execution vulnerability has been reported in the Microsoft Indexing Service. The vulnerability is caused by an...
Wordcircle index.php password Parameter SQL Injection - Ver2 (CVE-2006-0205)
An SQL injection vulnerability has been reported in Wordcircle. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Novell Client NetIdentity Agent Remote Pointer Dereference Code Execution - Ver2 (CVE-2009-1350)
The Novell NetIdentity agent works with eDirectory authentication to provide background authentication to Windows Web-based applications that require eDirectory authentication, such as iPrint, Novell Portal Services, eGuide, Novell NetIdentity, ZENworks, NetStorage, and iManager. NetIdentity...
TheWebForum login.php username Parameter SQL Injection - Ver2 (CVE-2006-0135)
An SQL injection vulnerability has been reported in TheWebForum twf. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
PSlash Web Portal index.php Code Execution - Ver2 (CVE-2001-1235)
A code execution vulnerability has been reported in PSlash Web Portal. A remote attacker could trigger this vulnerability by including files from remote web sites using an HTTP request that modifies the includedir variable. Successful exploitation of this vulnerability could allow a remote attack...
OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)
A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...