| OSVDB ID | Disclosure Date | Title |
|---|
|
21254
Description:
B2B trading Marketplace Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the products.php script not properly sanitizing user-supplied input to the 'cid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-28
|
Softbiz B2B Trading Marketplace Script products.php cid Parameter SQL Injection
|
|
21255
Description:
B2B trading Marketplace Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the profiles.php script not properly sanitizing user-supplied input to the 'cid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-28
|
Softbiz B2B Trading Marketplace Script profiles.php cid Parameter SQL Injection
|
|
21174
Description:
BedengPSP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the baca.php script not properly sanitizing user-supplied input to the 'ckode' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-28
|
BedengPSP baca.php ckode Parameter SQL Injection
|
|
21175
Description:
BedengPSP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the download.php script not properly sanitizing user-supplied input to the 'a.ngroup' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-28
|
BedengPSP download.php a.ngroup Parameter SQL Injection
|
|
21176
Description:
BedengPSP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'a.nsub' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-28
|
BedengPSP index.php a.nsub Parameter SQL Injection
|
|
21166
Description:
(Description Provided by CVE) : Direct static code injection vulnerability in error.php in GuppY 4.5.9 and earlier, when register_globals is disabled, allows remote attackers to execute arbitrary PHP code via the _SERVER[REMOTE_ADDR] parameter, which is injected into a .inc script that is later included by the main script.
|
2005-11-28
|
GuppY error.php _SERVER[REMOTE_ADDR] Variable Remote Command Execution
|
|
21167
Description:
(Description Provided by CVE) : Multiple directory traversal vulnerabilities in GuppY 4.5.9 and earlier allow remote attackers to read and include arbitrary files via (1) the meskin parameter to admin/editorTypetool.php, or the lng parameter to the in admin/inc scripts (2) archbatch.php, (3) dbbatch.php, and (4) nwlmail.php.
|
2005-11-28
|
GuppY editorTypetool.php meskin Parameter Traversal Arbitrary File Access
|
|
21168
Description:
(Description Provided by CVE) : Multiple directory traversal vulnerabilities in GuppY 4.5.9 and earlier allow remote attackers to read and include arbitrary files via (1) the meskin parameter to admin/editorTypetool.php, or the lng parameter to the in admin/inc scripts (2) archbatch.php, (3) dbbatch.php, and (4) nwlmail.php.
|
2005-11-28
|
GuppY archbatch.php lng Parameter Traversal Arbitrary File Access
|
|
21169
Description:
(Description Provided by CVE) : Multiple directory traversal vulnerabilities in GuppY 4.5.9 and earlier allow remote attackers to read and include arbitrary files via (1) the meskin parameter to admin/editorTypetool.php, or the lng parameter to the in admin/inc scripts (2) archbatch.php, (3) dbbatch.php, and (4) nwlmail.php.
|
2005-11-28
|
GuppY dbbatch.php lng Parameter Traversal Arbitrary File Access
|
|
21170
Description:
(Description Provided by CVE) : Multiple directory traversal vulnerabilities in GuppY 4.5.9 and earlier allow remote attackers to read and include arbitrary files via (1) the meskin parameter to admin/editorTypetool.php, or the lng parameter to the in admin/inc scripts (2) archbatch.php, (3) dbbatch.php, and (4) nwlmail.php.
|
2005-11-28
|
GuppY nwlmail.php lng Parameter Traversal Arbitrary File Access
|
|
45342
Description:
Unknown / Incomplete
|
2005-11-28
|
VirtueMart class.phpinputfilter.php html_entity_decode Function Remote DoS
|
|
52634
Description:
Unknown / Incomplete
|
2005-11-28
|
Google Talk (gTalk) Process Memory Cleartext Authentication Credential Disclosure
|
|
21397
Description:
The Top Music Module contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the modules.php script not properly sanitizing user-supplied input to the 'idartist', 'idsong' and 'idalbum' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-28
|
PHP-Nuke Top Music Module Multiple Parameter SQL Injection
|
|
21398
Description:
Geeklog contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker injects invalid SQL in the date field to search.php, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2005-11-28
|
Geeklog search.php Failed SQL Query Path Disclosure
|
|
21399
Description:
SimpleBBS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search module not properly sanitizing user-supplied input to undisclosed variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database. No further details have been provided.
|
2005-11-28
|
SimpleBBS Search Module SQL Injection
|
|
21367
Description:
Unknown / Incomplete
|
2005-11-27
|
MSN Messenger Failed Authentication Saturation DoS
|
|
35281
Description:
Unknown / Incomplete
|
2005-11-27
|
phpTodo Failed Command Authentication Bypass
|
|
21131
Description:
ADC2000 NG Pro contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the adcbrowres.php script not properly sanitizing user-supplied input to the cat variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-27
|
ADC2000 NG Pro adcbrowres.php cat Parameter SQL Injection
|
|
21140
Description:
(Description Provided by CVE) : Directory traversal vulnerability in index.php in PHP Doc System 1.5.1 and earlier allows remote attackers to access or include arbitrary files via a .. (dot dot) in the show parameter.
|
2005-11-27
|
PHP Doc System index.php show Parameter Local File Inclusion
|
|
21381
Description:
(Description Provided by CVE) : relocate_server.php in Coppermine Photo Gallery (CPG) 1.4.2 and 1.4 beta does not remove is not removed after installation and does not use authentication, which allows remote attackers to obtain sensitive information, such as database configuration, via a direct request.
|
2005-11-27
|
Coppermine Photo Gallery relocate_server.php Information Disclosure
|
|
21374
Description:
SDMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the list.php script not properly sanitizing user-supplied input to the 'folder_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-27
|
Simple Document Management System (SDMS) list.php folder_id Parameter SQL Injection
|
|
21375
Description:
SDMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the messages.php script not properly sanitizing user-supplied input to the 'mid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-27
|
Simple Document Management System (SDMS) messages.php mid Parameter SQL Injection
|
|
21373
Description:
vBulletin contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the remote avatar URL upon submission to the profile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-11-26
|
vBulletin Avatar URL Field XSS
|
|
21372
Description:
Zorum contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'rollid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-26
|
Zorum index.php rollid Parameter SQL Injection
|
|
21371
Description:
GhostScripter Amazon Shop contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "query" variable upon submission to the search.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-11-26
|
GhostScripter Amazon Shop search.php query Parameter XSS
|
|
23103
Description:
Unknown / Incomplete
|
2005-11-26
|
Siteframe siteframe.php LOCAL_PATH Parameter Traversal Arbitrary File Access
|
|
21407
Description:
Unknown / Incomplete
|
2005-11-26
|
gurlchecker c_check_link_get_properties_proto_http Overflow
|
|
21408
Description:
Unknown / Incomplete
|
2005-11-26
|
gurlchecker uc_html_parser_get_tags Arbitrary Memory Access
|
|
21409
Description:
Unknown / Incomplete
|
2005-11-26
|
gurlchecker uc_utils_string_cut Overflow
|
|
21358
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in athena.php in Oliver May Athena PHP Website Administration 0.1a allows remote attackers to execute arbitrary PHP code via a URL in the athena_dir parameter.
|
2005-11-26
|
Athena athena.php athena_dir Parameter Remote File Inclusion
|
|
21357
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in content.php in phpGreetz 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the content parameter.
|
2005-11-26
|
phpGreetz content.php content Parameter Remote File Inclusion
|
|
21534
Description:
PHPLang contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the multiple unspecified fields upon submission to the 'sendpm.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2005-11-26
|
PBLang sendpm.php Multiple Field XSS
|
|
21161
Description:
A local overflow exists in ktools. The 'VGETSTRING()' function fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request, a malicious user can cause arbitrary code execution resulting in a loss of integrity.
|
2005-11-26
|
ktools VGETSTRING Function Overflow
|
|
21160
Description:
A remote overflow exists in unalz. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted 'ALZ' archive containing a file with an overly long filename, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2005-11-26
|
unalz Archive Extraction Filename Overflow
|
|
21173
Description:
BosDates contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the calendar.php script not properly sanitizing user-supplied input to the 'year' and 'category' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-26
|
BosDates calendar.php Multiple Parameter SQL Injection
|
|
21171
Description:
(Description Provided by CVE) : merchants/index.php in Post Affiliate Pro 2.0.4 and earlier, with magic_quotes_gpc disabled, allows remote attackers to include arbitrary local files via the md parameter, possibly due to a directory traversal vulnerability.
|
2005-11-26
|
Post Affiliate Pro index.php md Parameter Arbitrary File Access
|
|
21164
Description:
Entergal MX contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'action' and 'idcat' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-26
|
Entergal MX index.php Multiple Parameter SQL Injection
|
|
21172
Description:
Post Affiliate Pro contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'sortorder' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-26
|
Post Affiliate Pro index.php sortorder Parameter SQL Injection
|
|
21441
Description:
WowBB contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'search.php' script not properly sanitizing user-supplied input to the 'q' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-26
|
WowBB search.php q Parameter SQL Injection
|
|
21442
Description:
WowBB contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'view_user.php' script not properly sanitizing user-supplied input to the 'sort_by' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-11-26
|
WowBB view_user.php sort_by Parameter SQL Injection
|
