[CLOSE] OSVDB ID : 27934 - Disclosed: 2006-06-30

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Chamberland Technology ezWaiter 3.0 Online and possibly Enterprise Software (aka enterprise edition) allow remote attackers to inject arbitrary web script or HTML via the (1) itemfor (aka "Who is this item for?") and (2) special (aka "Special Instructions") parameters to item.php, which is accessed from showorder.php, or (3) unspecified parameters to the login form at login.php.

[CLOSE] OSVDB ID : 27935 - Disclosed: 2006-06-30

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Chamberland Technology ezWaiter 3.0 Online and possibly Enterprise Software (aka enterprise edition) allow remote attackers to inject arbitrary web script or HTML via the (1) itemfor (aka "Who is this item for?") and (2) special (aka "Special Instructions") parameters to item.php, which is accessed from showorder.php, or (3) unspecified parameters to the login form at login.php.

[CLOSE] OSVDB ID : 27930 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner Exchange Script (aka Banner Exchange Network Script) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the city parameter in (a) insertmember.php, and (2) a PHPSESSID cookie in (b) lostpassword.php, (c) gen_confirm_mem.php, and (d) index.php.

[CLOSE] OSVDB ID : 27931 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner Exchange Script (aka Banner Exchange Network Script) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the city parameter in (a) insertmember.php, and (2) a PHPSESSID cookie in (b) lostpassword.php, (c) gen_confirm_mem.php, and (d) index.php.

[CLOSE] OSVDB ID : 27932 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner Exchange Script (aka Banner Exchange Network Script) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the city parameter in (a) insertmember.php, and (2) a PHPSESSID cookie in (b) lostpassword.php, (c) gen_confirm_mem.php, and (d) index.php.

[CLOSE] OSVDB ID : 27933 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner Exchange Script (aka Banner Exchange Network Script) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the city parameter in (a) insertmember.php, and (2) a PHPSESSID cookie in (b) lostpassword.php, (c) gen_confirm_mem.php, and (d) index.php.

[CLOSE] OSVDB ID : 32029 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Buffer overflow in PCCSRV\Web_console\RemoteInstallCGI\CgiRemoteInstall.exe for Trend Micro OfficeScan 7.3 before build 7.3.0.1089 allows remote attackers to execute arbitrary code via unknown attack vectors.

[CLOSE] OSVDB ID : 36994 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : The TIFFFetchAnyArray function in ImageIO in Apple OS X 10.4.7 and earlier allows remote user-assisted attackers to cause a denial of service (application crash) via an invalid tag value in a TIFF image, possibly triggering a null dereference. NOTE: This is a different issue than CVE-2006-1469.

[CLOSE] OSVDB ID : 30087 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : ** DISPUTED ** Microsoft Internet Explorer 7.0 Beta allows remote attackers to cause a denial of service (application crash) via a web page with multiple empty APPLET start tags. NOTE: a third party has disputed this issue, stating that the crash does not occur with Microsoft Internet Explorer 7.0 Beta3.

[CLOSE] OSVDB ID : 26976 - Disclosed: 2006-06-29

Description:

NewsPHP contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'words', 'tim', 'id', and 'cat_id' variables upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 26977 - Disclosed: 2006-06-29

Description:

NewsPHP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'words', 'id', 'topmenuitem', 'cat_id', and 'words' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 26978 - Disclosed: 2006-06-29

Description:

NewsPHP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the inc/rss_feed.php script not properly sanitizing user-supplied input to the 'category' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 26908 - Disclosed: 2006-06-29

Description:

QuickZip contains a flaw that allows a remote attacker to place malicious files to arbitrary locations outside of the specified directory. The issue is due to the program not properly sanitizing user input when extracting TAR, GZ and JAR archives, specifically directory traversal style attacks (../../).

[CLOSE] OSVDB ID : 26936 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Siemens Speedstream Wireless Router 2624 allows local users to bypass authentication and access protected files by using the Universal Plug and Play UPnP/1.0 component.

[CLOSE] OSVDB ID : 26784 - Disclosed: 2006-06-29

Description:

Some Chess contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the board.php script not properly sanitizing user-supplied input to the 'gameID' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 26807 - Disclosed: 2006-06-29

Description:

MyBulletinBoard (MyBB) contains a flaw that may allow a malicious user to delete posts via HTTP GET requests. The issue is triggered when a malicious post containing a specially crafted 'img' tag is handled by editpost.php script. It is possible that the flaw may allow a non-privileged user to delete arbitrary forum post resulting in a loss of integrity.

[CLOSE] OSVDB ID : 26972 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in divers.php in Vincent Leclercq News 5.2 allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) texte parameters.

[CLOSE] OSVDB ID : 26973 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in divers.php in Vincent Leclercq News 5.2 allows remote attackers to inject arbitrary web script or HTML via the (1) id and (2) disabled parameters.

[CLOSE] OSVDB ID : 26974 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : index.php in Vincent Leclercq News 5.2 allows remote attackers to obtain sensitive information, such as the installation path, via a mail[] parameter with invalid values.

[CLOSE] OSVDB ID : 26935 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 through 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and earlier, and possibly other products, when installed on Apache with mod_mime, allows remote attackers to upload and execute arbitrary PHP code via a filename with a .php extension and a trailing extension that is allowed, such as .zip.

[CLOSE] OSVDB ID : 26886 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in view.php in phpRaid 3.0.4, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the raid_id parameter.

[CLOSE] OSVDB ID : 26887 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in includes/functions_logging.php in phpRaid 3.0.5, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the log_hack function.

[CLOSE] OSVDB ID : 26888 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the announcements.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26889 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the rss.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26890 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in register.php for phpRaid 3.0.6 and possibly other versions, when the authorization type is phpraid, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) email parameters.

[CLOSE] OSVDB ID : 26891 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the configuration.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26892 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the guilds.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26893 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the index.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26894 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the locations.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26895 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the login.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26896 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the lua_output.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26897 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the permissions.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26898 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the profile.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26899 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the raids.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26900 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the register.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26901 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the roster.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26902 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the view.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26903 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the logs.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26904 - Disclosed: 2006-06-29

Description:

phpRaid contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the users.php script not properly sanitizing user input supplied to the 'phpraid_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26934 - Disclosed: 2006-06-29

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in the del_block function in modules/Admin/block.php in Nuked-Klan 1.7.5 and earlier and 1.7 SP4.2 allows remote attackers to delete arbitrary "blocks" via a link with a modified bid parameter in a del_block op on the block page in index.php.