[CLOSE] OSVDB ID : 23069 - Disclosed: 2006-01-31

Description:

(Description Provided by CVE) : MyCO Guestbook 1.0 stores the admin directory under the web document root with insufficient access control, which allows remote attackers to perform unspecified privileged actions by directly accessing files via a URL.

[CLOSE] OSVDB ID : 23070 - Disclosed: 2006-01-31

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in MyCO Guestbook 1.0 allows remote attackers to inject arbitrary web script or HTML via the Name field, when registering a user.

[CLOSE] OSVDB ID : 23250 - Disclosed: 2006-01-31

Description:

The MSAnalysis module for CPG Dragonfly CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'profile' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database. Additionally, if a failed SQL query is made, the program will disclose the full installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 28628 - Disclosed: 2006-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 28629 - Disclosed: 2006-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 28630 - Disclosed: 2006-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 24320 - Disclosed: 2006-01-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Files Xaraya module before 0.5.1, when the Archive Directory field on the Modify Config page is blank, allows remote attackers to access files outside of the web root via ".." (dot dot) sequences.

[CLOSE] OSVDB ID : 22789 - Disclosed: 2006-01-30

Description:

A remote overflow exists in WinAmp. WinAmp fails to perform correct boundary checks on playlists resulting in a buffer overflow. With a specially crafted playlist, an attacker can execute arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 22934 - Disclosed: 2006-01-30

Description:

ashNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'id' variable upon submission to the 'ashnews.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 22923 - Disclosed: 2006-01-30

Description:

(Description Provided by CVE) : The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very long line in the body, which causes the client to repeatedly crash until the e-mail message is manually removed, possibly due to a buffer overflow, as demonstrated using an XML attachment.

[CLOSE] OSVDB ID : 22793 - Disclosed: 2006-01-30

Description:

HTMLArea contains a flaw that may allow a malicious user to execute arbitrary commands. The '/admin/htmlarea/popups/file/files.php' script is accessible without authentication, allowing a remote attacker to use this script to upload malicious PHP files and execute arbitrary code on the system.

[CLOSE] OSVDB ID : 22843 - Disclosed: 2006-01-30

Description:

Cerberus Helpdesk contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'contact_search' variable upon submission to the 'clients.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 22805 - Disclosed: 2006-01-30

Description:

Nuked-klaN contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'letter' variable upon submission to the Members module (via index.php). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 23876 - Disclosed: 2006-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 22879 - Disclosed: 2006-01-30

Description:

Daffodil CRM contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the userlogin.jsp script not properly sanitizing user-supplied input to the 'userLoginBox' and 'passwordBox' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24060 - Disclosed: 2006-01-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in webcheck before 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the (1) url, (2) title, or (3) author name in a crawled page, which is not properly sanitized in the tooltips of a report.

[CLOSE] OSVDB ID : 23000 - Disclosed: 2006-01-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in MG2 (formerly known as Minigal) 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the Name field in a comment associated with a picture.

[CLOSE] OSVDB ID : 23004 - Disclosed: 2006-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 22809 - Disclosed: 2006-01-30

Description:

SZUserMgnt contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the SZUserMgnt.class.php script not properly sanitizing user-supplied input to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 22841 - Disclosed: 2006-01-30

Description:

BrowserCRM contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'query' variable upon submission to the 'results.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 27977 - Disclosed: 2006-01-29

Description:

(Description Provided by CVE) : Easy CMS stores the images directory under the web document root with insufficient access control and browsing enabled, which allows remote attackers to list and possibly read images that are stored in that directory.

[CLOSE] OSVDB ID : 22806 - Disclosed: 2006-01-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the Articles module in sPaiz-Nuke allows remote attackers to inject arbitrary web script or HTML via the query parameter in the search file.

[CLOSE] OSVDB ID : 22804 - Disclosed: 2006-01-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Easy CMS allow remote attackers to inject arbitrary web script or HTML via (1) unknown attack vectors in the administrative interface and (2) input fields of the contact form.

[CLOSE] OSVDB ID : 23003 - Disclosed: 2006-01-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the Add Thread to Favorites feature in usercp2.php in MyBB (aka MyBulletinBoard) 1.02 allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer header ($url variable).

[CLOSE] OSVDB ID : 22808 - Disclosed: 2006-01-29

Description:

UBB.threads contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the showflat.php script not properly sanitizing user-supplied input to the 'Number' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 22900 - Disclosed: 2006-01-29

Description:

Ad Zapper for squid contains a flaw that may allow a remote denial of service. The issue is triggered when sending a URL to the squid_redirect script with a large number of forward slashes. This can cause the remote host to consume CPU resources, potentially causing a denial of service.

[CLOSE] OSVDB ID : 23074 - Disclosed: 2006-01-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 23075 - Disclosed: 2006-01-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 23076 - Disclosed: 2006-01-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 22791 - Disclosed: 2006-01-28

Description:

(Description Provided by CVE) : Unspecified vulnerability in Pioneers (formerly gnocatan) before 0.9.49 allows remote attackers to cause a denial of service (application crash) via long chat messages.

[CLOSE] OSVDB ID : 22792 - Disclosed: 2006-01-28

Description:

(Description Provided by CVE) : pmwiki.php in PmWiki 2.1 beta 20, with register_globals enabled, allows remote attackers to bypass protection mechanisms that deregister global variables by setting both a GPC variable and a GLOBALS[] variable with the same name, which causes PmWiki to unset the GLOBALS[] variable but not the GPC variable, which creates resultant vulnerabilities such as remote file inclusion and cross-site scripting (XSS).

[CLOSE] OSVDB ID : 22935 - Disclosed: 2006-01-28

Description:

(Description Provided by CVE) : zbattle.net Zbattle client 1.09 SR-1 beta allows remote attackers to cause an unspecified denial of service by rapidly creating and closing a game.

[CLOSE] OSVDB ID : 22924 - Disclosed: 2006-01-28

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Mozilla 1.7.12 and possibly earlier, Mozilla Firefox 1.0.7 and possibly earlier, and Netscape 8.1 and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the -moz-binding CSS (Cascading Style Sheets) property, which does not require that the style sheet have the same origin as the web page, as demonstrated by the compromise of a large number of LiveJournal accounts.

[CLOSE] OSVDB ID : 22807 - Disclosed: 2006-01-28

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in UebiMiau 2.7.9, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via a javascript: URI in the SRC attribute of an IMG tag.

[CLOSE] OSVDB ID : 23351 - Disclosed: 2006-01-27

Description:

(Description Provided by CVE) : Multiple memory leaks in the LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (memory consumption) via invalid BER packets that trigger an error, which might prevent memory from being freed if it was allocated during the ber_scanf call, as demonstrated using the ProtoVer LDAP test suite.

[CLOSE] OSVDB ID : 23352 - Disclosed: 2006-01-27

Description:

(Description Provided by CVE) : dn2ancestor in the LDAP component in Fedora Directory Server 1.0 allows remote attackers to cause a denial of service (CPU and memory consumption) via a ModDN operation with a DN that contains a large number of "," (comma) characters, which results in a large amount of recursion, as demonstrated using the ProtoVer LDAP test suite.

[CLOSE] OSVDB ID : 23353 - Disclosed: 2006-01-27

Description:

(Description Provided by CVE) : The LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (crash) via a certain "bad BER sequence" that results in a free of uninitialized memory, as demonstrated using the ProtoVer LDAP test suite.

[CLOSE] OSVDB ID : 22790 - Disclosed: 2006-01-27

Description:

ASPThai Forums contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.asp script not properly sanitizing user-supplied input to the 'password' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 22794 - Disclosed: 2006-01-27

Description:

(Description Provided by CVE) : Buffer overflow in git-checkout-index in GIT before 1.1.5 allows remote attackers to execute arbitrary code via an index file with a long symbolic link.

[CLOSE] OSVDB ID : 22787 - Disclosed: 2006-01-27

Description:

(Description Provided by CVE) : CommuniGate Pro Core Server before 5.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via LDAP messages with negative BER lengths, and possibly other vectors, as demonstrated by the ProtoVer LDAP test suite.