[CLOSE] OSVDB ID : 33998 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Exhibit Engine (EE) 1.22, and possibly earlier, allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to (1) fetchsettings.php or (2) fstyles.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33999 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Exhibit Engine (EE) 1.22, and possibly earlier, allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to (1) fetchsettings.php or (2) fstyles.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 36062 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Mozilla Firefox 2.0, possibly only when running on Windows, allows remote attackers to bypass the Phishing Protection mechanism by representing an IP address in (1) dotted-hex, (2) dotted-octal, (3) single decimal integer, (4) single hex integer, or (5) single octal integer format, which is not captured by the blacklist filter.

[CLOSE] OSVDB ID : 45198 - Disclosed: 2006-10-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31962 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers to cause a denial of service (crash) by creating a range object using createRange, calling selectNode on a DocType node (DOCUMENT_TYPE_NODE), then calling createContextualFragment on the range, which triggers a null dereference. NOTE: the original Bugtraq post mentioned that code execution was possible, but followup analysis has shown that it is only a null dereference.

[CLOSE] OSVDB ID : 33823 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in DataparkSearch Engine 4.42 and earlier allows remote attackers to execute arbitrary SQL commands via a malformed hostname in a URL.

[CLOSE] OSVDB ID : 30153 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informix I-Connect 2.90 use insecure permissions for installation scripts, which allows local users to gain privileges by modifying the scripts.

[CLOSE] OSVDB ID : 30154 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : The installation script in IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informix I-Connect 2.90 allows local users to "compromise security" via a symlink attack on temporary files.

[CLOSE] OSVDB ID : 30117 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin/include/headerscripts.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30118 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin/include/footerhome.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30119 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin/include/footermain.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30120 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to ohotogallery/headerscripts.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30121 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to templates/footerhome.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30122 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to templates/footermain.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30123 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to templates/headermain.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30124 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to templates/sitemapfooter.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30125 - Disclosed: 2006-10-30

Description:

QnECMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to templates/sitemapheader.php not properly sanitizing user input supplied to the 'adminfolderpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30152 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in includes/menu.inc.php in E-Annu 1.0 allows remote attackers to execute arbitrary SQL commands via the login parameter. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 30151 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the errorHTML function in the index script in Sun Java System Messenger Express 6 allows remote attackers to inject arbitrary web script or HTML via the error parameter. NOTE: this issue might be related to CVE-2006-5486, however due to the vagueness of the initial advisory and different researchers a new CVE was assigned.

[CLOSE] OSVDB ID : 30148 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in MainAnnounce2.asp in Techno Dreams Announcement allows remote attackers to execute arbitrary SQL commands via the key parameter.

[CLOSE] OSVDB ID : 30150 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Easy File Sharing (EFS) Web Server 4.0, when running on an NTFS file system, allows remote attackers to read arbitrary files under the web root by appending "::$DATA" to the end of a HTTP GET request, which accesses the alternate data stream.

[CLOSE] OSVDB ID : 30147 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in guestbookview.asp in Techno Dreams Guest Book 1.0 earlier allows remote attackers to execute arbitrary SQL commands via the key parameter.

[CLOSE] OSVDB ID : 30162 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : BlooMooWeb ActiveX control (AidemATL.dll) allows remote attackers to (1) download arbitrary files via a URL in the bstrUrl parameter to the BW_DownloadFile method, (2) execute arbitrary local files via a file path in the bstrParams parameter to the BW_LaunchGame method, and (3) delete arbitrary files via a file path in the filePath parameter to the BW_DeleteTempFile method.

[CLOSE] OSVDB ID : 30163 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : BlooMooWeb ActiveX control (AidemATL.dll) allows remote attackers to (1) download arbitrary files via a URL in the bstrUrl parameter to the BW_DownloadFile method, (2) execute arbitrary local files via a file path in the bstrParams parameter to the BW_LaunchGame method, and (3) delete arbitrary files via a file path in the filePath parameter to the BW_DeleteTempFile method.

[CLOSE] OSVDB ID : 30164 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : BlooMooWeb ActiveX control (AidemATL.dll) allows remote attackers to (1) download arbitrary files via a URL in the bstrUrl parameter to the BW_DownloadFile method, (2) execute arbitrary local files via a file path in the bstrParams parameter to the BW_LaunchGame method, and (3) delete arbitrary files via a file path in the filePath parameter to the BW_DeleteTempFile method.

[CLOSE] OSVDB ID : 30002 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18-stable allows local users to cause a denial of service (hang or oops) via unspecified manipulations that trigger an infinite loop while searching for flowlabels.

[CLOSE] OSVDB ID : 30111 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.

[CLOSE] OSVDB ID : 30206 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in change_pass.php in iG Shop 1.4 allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vulnerability than CVE-2006-5631. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 30136 - Disclosed: 2006-10-30

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to include/body.inc.php not properly sanitizing user input supplied to the 'reqpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30137 - Disclosed: 2006-10-30

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to body_blog.inc.php not properly sanitizing user input supplied to the 'reqpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30138 - Disclosed: 2006-10-30

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to upload_ht.inc.php not properly sanitizing user input supplied to the 'usrinc' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30210 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : thttpd on Debian GNU/Linux, and possibly other distributions, allows local users to create or touch arbitrary files via a symlink attack on the start_thttpd temporary file.

[CLOSE] OSVDB ID : 30160 - Disclosed: 2006-10-30

Description:

Spider Friendly for phpBB contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin/modules_data.php not properly sanitizing user input supplied to the 'phpbb_root_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 29973 - Disclosed: 2006-10-30

Description:

Asterisk contains a flaw that may allow a remote denial of service. The issue is triggered due to unspecified errors in the SIP channel driver within the handling of malformed SIP packets, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 32616 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Dmitry Sheiko Business Card Web Builder (BCWB) 2.5 allow remote attackers to execute arbitrary PHP code via a URL in the root_path_admin parameter to (1) /include/startup.inc.php, (2) dcontent/default.css.php, or (3) system/default.css.php, different vectors than CVE-2006-4946.

[CLOSE] OSVDB ID : 32617 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Dmitry Sheiko Business Card Web Builder (BCWB) 2.5 allow remote attackers to execute arbitrary PHP code via a URL in the root_path_admin parameter to (1) /include/startup.inc.php, (2) dcontent/default.css.php, or (3) system/default.css.php, different vectors than CVE-2006-4946.

[CLOSE] OSVDB ID : 32618 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Dmitry Sheiko Business Card Web Builder (BCWB) 2.5 allow remote attackers to execute arbitrary PHP code via a URL in the root_path_admin parameter to (1) /include/startup.inc.php, (2) dcontent/default.css.php, or (3) system/default.css.php, different vectors than CVE-2006-4946.

[CLOSE] OSVDB ID : 31676 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in libs/sessions.lib.php in BytesFall Explorer (bfExplorer) 0.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified parameters, a different issue than CVE-2006-5606.

[CLOSE] OSVDB ID : 37417 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in db/PollDB.php in Robert Ladstaetter ActionPoll 1.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the CONFIG_DATAREADERWRITER parameter, a different vector than CVE-2001-1297. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 38455 - Disclosed: 2006-10-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via ".." sequences in the root parameter.