[CLOSE] OSVDB ID : 31204 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Woltlab Burning Board (wBB) allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to galerie_index.php and possibly (2) galerie_onfly.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. The second vector might not be XSS.

[CLOSE] OSVDB ID : 31205 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Woltlab Burning Board (wBB) allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to galerie_index.php and possibly (2) galerie_onfly.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. The second vector might not be XSS.

[CLOSE] OSVDB ID : 31160 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php in Top sites de PixelArtKingdom allows remote attackers to include and execute arbitrary files via the page parameter.

[CLOSE] OSVDB ID : 23502 - Disclosed: 2006-02-27

Description:

Issue Dealer contains a flaw related to the local weblog publisher that may allow an attacker to gain access to unpublished issues. No further details have been provided.

[CLOSE] OSVDB ID : 23530 - Disclosed: 2006-02-27

Description:

iGENUS Webmail contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the config_inc.php script not properly sanitizing user input supplied to the 'SG_HOME' variable. This may allow an attacker to include or read arbitrary local files.

[CLOSE] OSVDB ID : 23512 - Disclosed: 2006-02-27

Description:

ArGoSoft Mail Server Pro contains a flaw that allows a remote cross site scripting attack. This flaw exists because the Webmail application does not validate various e-mail headers (e.g. "subject" and "from") before being displayed by the "View Headers" functionality. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 23571 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : uConfig agent in Compex NetPassage WPE54G router allows remote attackers to cause a denial of service (unresposiveness) via crafted datagrams to UDP port 7778.

[CLOSE] OSVDB ID : 23557 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in the "post comment" functionality of WordPress 2.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) website, and (3) comment parameters.

[CLOSE] OSVDB ID : 23558 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : WordPress 2.0.1 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) default-filters.php, (2) template-loader.php, (3) rss-functions.php, (4) locale.php, (5) wp-db.php, and (6) kses.php in the wp-includes/ directory; and (7) edit-form-advanced.php, (8) admin-functions.php, (9) edit-link-form.php, (10) edit-page-form.php, (11) admin-footer.php, and (12) menu.php in the wp-admin directory; and possibly (13) list directory contents of the wp-includes directory. NOTE: the vars.php, edit-form.php, wp-settings.php, and edit-form-comment.php vectors are already covered by CVE-2005-4463. The menu-header.php vector is already covered by CVE-2005-2110. Other vectors might be covered by CVE-2005-1688. NOTE: if the typical installation of WordPress does not list any site-specific files to wp-includes, then vector [13] is not an exposure.

[CLOSE] OSVDB ID : 23559 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the (1) wp-admin, (2) wp-content, and (3) wp-includes directories, possibly due to uninitialized variables.

[CLOSE] OSVDB ID : 23560 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the (1) wp-admin, (2) wp-content, and (3) wp-includes directories, possibly due to uninitialized variables.

[CLOSE] OSVDB ID : 23544 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Direct static code injection vulnerability in func.inc.php in ZoneO-Soft freeForum before 1.2.1 allows remote attackers to execute arbitrary PHP code via the (1) X-Forwarded-For and (2) Client-Ip HTTP headers, which are stored in Data/flood.db.php.

[CLOSE] OSVDB ID : 23545 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in func.inc.php in ZoneO-Soft freeForum before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the (1) name and (2) subject parameters.

[CLOSE] OSVDB ID : 23519 - Disclosed: 2006-02-27

Description:

DirectContact contains a flaw that allows a remote attacker to read the contents of arbitrary files outside of the web path. The issue is due to DirectContact not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied to the server.

[CLOSE] OSVDB ID : 23549 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to cause a denial of service (segmentation fault) and possibly execute code by sending the server a large request.

[CLOSE] OSVDB ID : 23551 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) dir and (2) page_id parameter to index.php.

[CLOSE] OSVDB ID : 23552 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) dir and (2) page_id parameter to (a) index.php and (3) userid parameter to (b) mailto.php. NOTE: it is possible that issues 1 and 2 are resultant from SQL injection.

[CLOSE] OSVDB ID : 23553 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) dir and (2) page_id parameter to (a) index.php and (3) userid parameter to (b) mailto.php. NOTE: it is possible that issues 1 and 2 are resultant from SQL injection.

[CLOSE] OSVDB ID : 23546 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in EKINboard 1.0.3 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag.

[CLOSE] OSVDB ID : 23547 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : SQL injection vulnerability in config.php in EKINboard 1.0.3 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the username cookie.

[CLOSE] OSVDB ID : 23550 - Disclosed: 2006-02-27

Description:

(Description Provided by CVE) : nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authentication server.

[CLOSE] OSVDB ID : 23660 - Disclosed: 2006-02-27

Description:

The Linux kernel contains a flaw that may allow a local denial of service. The issue is triggered because the 'die_if_kernel()' function is labeled with the 'noreturn' attribute. On Intel ia64 systems, this can lead to a kernel panic when user faults are caused, which will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 23603 - Disclosed: 2006-02-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 23675 - Disclosed: 2006-02-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 29410 - Disclosed: 2006-02-26

Description:

(Description Provided by CVE) : Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via scripting code in the "31" parameter in a NewUser function, which is not filtered by the modem when creating the account, but cannot be deleted by the administrator, possibly due to cleansing that occurs in the administrator interface.

[CLOSE] OSVDB ID : 23619 - Disclosed: 2006-02-26

Description:

(Description Provided by CVE) : SQL injection vulnerability in news.php in Tony Baird Fantastic News 2.1.1 allows remote attackers to execute arbitrary SQL commands via the page parameter. NOTE: the category vector is already covered by CVE-2005-3846.

[CLOSE] OSVDB ID : 23620 - Disclosed: 2006-02-26

Description:

Archangel Weblog contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an attacker includes a cookie with the value 'ba_admin=1' within the HTTP headers while requesting /admin/index.php. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 23621 - Disclosed: 2006-02-26

Description:

Archangel Weblog contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to /admin/index.php not properly sanitizing user input supplied to the 'index' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 31287 - Disclosed: 2006-02-26

Description:

(Description Provided by CVE) : Unspecified vulnerability in the "Remember Me login functionality" in Joomla! 1.0.7 and earlier has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 31161 - Disclosed: 2006-02-26

Description:

(Description Provided by CVE) : NETGEAR WGT624 Wireless DSL router has a default account of super_username "Gearguy" and super_passwd "Geardog", which allows remote attackers to modify the configuration. NOTE: followup posts have suggested that this might not occur with all WGT624 routers.

[CLOSE] OSVDB ID : 24101 - Disclosed: 2006-02-26

Description:

Basic Analysis and Security Engine (BASE) contains a flaw that may allow a malicious user to bypass BASE built in authentication system for the base_maintenance.php script. The issue is due to the broken "AuthenticateNoCookie()" function which is used in standalone mode. It is possible that the flaw may allow access to base_maintenance.php page resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 23607 - Disclosed: 2006-02-26

Description:

The Linux kernel contains a flaw that may allow a local denial of service. The issue is triggered because the code in binfmt_elf.c fails to properly validate the entry address of ELF executables. With a crafted ELF binary, the kernel can be forced to enter an inifite loop, which will result in loss of availability for the platform. Note that the issue is only present on non-AMD x86_64 systems.

[CLOSE] OSVDB ID : 23815 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker provides a malformed filename to the 'feed' variable in the syndication component, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 23816 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker provides malformed HTML tags to the 'mosmsg' variable in the poll system. Due to an error in the anti cross site scripting (XSS) code in includes/phpInputFilter/class.inputfilter.php, such a request will cause a denial of service and may result in loss of availability for the system.

[CLOSE] OSVDB ID : 23817 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw related to the syndication component that allows a remote attacker to create arbitrary files. No further details have been provided.

[CLOSE] OSVDB ID : 23818 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker performs an unspecified action with the mod_templatechooser function, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 23819 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to multiple unspecified administration scripts not properly sanitizing user-supplied input. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 23820 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw related to the Admin session name verification that may allow an attacker to bypass authentication. No further details have been provided.

[CLOSE] OSVDB ID : 23821 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw related to the 'unpublished' flag that may allow an attacker to access various items such as Weblink, Polls, Newfeeds, Weblinks and Content. No further details have been provided.

[CLOSE] OSVDB ID : 23822 - Disclosed: 2006-02-26

Description:

Joomla! contains a flaw related to the 'access level' checks protecting multiple items that may allow an attacker to gain privileged access. These items include Content, Newsfeed, Weblink, Category Search, Contact Search, Content Search, Newsfeed Search and Weblink Search. No further details have been provided.