| OSVDB ID | Disclosure Date | Title |
|---|
|
30933
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in FreeHost allow remote attackers to execute arbitrary SQL commands via (1) readme parameter to FreeHost/misc.php or (2) index parameter to FreeHost/news.php.
|
2006-06-30
|
FreeHost FreeHost/news.php index Parameter SQL Injection
|
|
30934
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in FreeHost allow remote attackers to execute arbitrary SQL commands via (1) readme parameter to FreeHost/misc.php or (2) index parameter to FreeHost/news.php.
|
2006-06-30
|
FreeHost FreeHost/misc.php readme Parameter SQL Injection
|
|
30085
Description:
(Description Provided by CVE) : Premium Anti-Spam in Ipswitch IMail Secure Server 2006 and Collaboration Suite 2006 Premium, when using a certain .dat file in the StarEngine /data directory from 20060630 or earlier, does not properly receive and implement bullet signature updates, which allows context-dependent attackers to use the server for spam transmission.
|
2006-06-30
|
Ipswitch IMail Secure Server Premium Anti-Spam Signature Update Failure
|
|
27048
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in search.php in mAds 1.0 allows remote attackers to inject arbitrary web script or HTML via the "search string".
|
2006-06-30
|
mAds Search Function XSS
|
|
26963
Description:
Linux Kernel contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs when handling SCTP packets without a chunk, and will result in loss of availability for the platform.
|
2006-06-30
|
Linux Kernel SCTP conntrack Chunkless Packet Remote DoS
|
|
26979
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view_sub_forum.php script not properly sanitizing user-supplied input to the 'main_cat' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone view_sub_forum.php main_cat Parameter SQL Injection
|
|
26980
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view_classifieds.php script not properly sanitizing user-supplied input to the 'cat_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone view_classifieds.php cat_id Parameter SQL Injection
|
|
26981
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view_ad.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone view_ad.php id Parameter SQL Injection
|
|
26982
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view_event.php script not properly sanitizing user-supplied input to the 'event_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone view_event.php event_id Parameter SQL Injection
|
|
26983
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the delete_event.php script not properly sanitizing user-supplied input to the 'event_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone delete_event.php event_id Parameter SQL Injection
|
|
26984
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the edit_event.php script not properly sanitizing user-supplied input to the 'event_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone edit_event.php event_id Parameter SQL Injection
|
|
26985
Description:
Buddy Zone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view_group.php script not properly sanitizing user-supplied input to the 'group_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, if a failed query is performed, the program will disclose the softwares installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2006-06-30
|
Buddy Zone view_group.php group_id Parameter SQL Injection
|
|
26986
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_sub_forum.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone view_sub_forum.php XSS
|
|
26987
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_post.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone view_post.php XSS
|
|
26988
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_classifieds.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone view_classifieds.php XSS
|
|
26989
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_ad.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone view_ad.php XSS
|
|
26990
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_event.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone view_event.php XSS
|
|
26991
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the delete_event.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone delete_event.php XSS
|
|
26992
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the edit_event.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone edit_event.php XSS
|
|
26993
Description:
Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_group.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
Buddy Zone view_group.php XSS
|
|
27051
Description:
Unknown / Incomplete
|
2006-06-30
|
Invision Power Board Avatar img Tag XSS
|
|
27052
Description:
Unknown / Incomplete
|
2006-06-30
|
Invision Power Board Moderator Forum Access Control Bypass
|
|
26958
Description:
MoniWiki contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user input upon submission to the wiki.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-06-30
|
MoniWiki wiki.php XSS
|
|
26954
Description:
(Description Provided by CVE) : Unspecified vulnerability in the POP service in Stalker CommuniGate Pro 5.1c1 and earlier allows remote attackers to cause a denial of service (server crash) via unspecified vectors involving opening an empty inbox.
|
2006-06-30
|
CommuniGate Pro POP Service Empty Inbox Remote DoS
|
|
26953
Description:
(Description Provided by CVE) : Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.
|
2006-06-30
|
HP-UX mkdir Unspecified Local Privilege Escalation
|
|
26951
Description:
Unknown / Incomplete
|
2006-06-30
|
phpFormGenerator File Upload Arbitrary PHP Code Execution
|
|
26950
Description:
(Description Provided by CVE) : pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.
|
2006-06-30
|
Sun ONE/iPlanet Messaging Server pipe_master msg.conf Symlink Arbitrary File Disclosure
|
|
26939
Description:
(Description Provided by CVE) : Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents.
|
2006-06-30
|
OpenOffice.org (OOo) Java Applets Unspecified Privilege Escalation
|
|
26940
Description:
(Description Provided by CVE) : OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.
|
2006-06-30
|
OpenOffice.org (OOo) Document BASIC Macro Arbitrary Command Execution
|
|
26941
Description:
(Description Provided by CVE) : Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."
|
2006-06-30
|
OpenOffice.org (OOo) Calc XML Document Processing Overflow
|
|
26942
Description:
(Description Provided by CVE) : Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."
|
2006-06-30
|
OpenOffice.org (OOo) Draw XML Document Processing Overflow
|
|
26943
Description:
(Description Provided by CVE) : Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."
|
2006-06-30
|
OpenOffice.org (OOo) Impress XML Document Processing Overflow
|
|
26944
Description:
(Description Provided by CVE) : Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."
|
2006-06-30
|
OpenOffice.org (OOo) Math XML Document Processing Overflow
|
|
26945
Description:
(Description Provided by CVE) : Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."
|
2006-06-30
|
OpenOffice.org (OOo) Writer XML Document Processing Overflow
|
|
26948
Description:
(Description Provided by CVE) : SQL injection vulnerability in tree.php in MyNewsGroups 0.6 allows remote attackers to execute arbitrary SQL commands via the grp_id parameter.
|
2006-06-30
|
MyNewsGroups tree.php grp_id Parameter SQL Injection
|
|
26949
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in phpMyAdmin before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via the table parameter.
|
2006-06-30
|
phpMyAdmin table Parameter XSS
|
|
28161
Description:
(Description Provided by CVE) : index.php in Zen Cart 1.3.0.2 allows remote attackers to obtain sensitive information via empty (1) _GET[], (2) _SESSION[], (3) _POST[], (4) _COOKIE[], or (5) _SESSION[] array parameters, which reveals the installation path in an error message. NOTE: this issue might be resultant from a global overwrite vulnerability.
|
2006-06-30
|
Zen Cart index.php Multiple Variable Path Disclosure
|
|
28101
Description:
(Description Provided by CVE) : NCP Secure Enterprise Client (aka VPN/PKI client) 8.30 Build 59, and possibly earlier versions, when the Link Firewall and Personal Firewall are both configured to block all inbound and outbound network traffic, allows context-dependent attackers to send inbound UDP traffic with source port 67 and destination port 68, and outbound UDP traffic with source port 68 and destination port 67.
|
2006-06-30
|
NCP Link Firewall UDP Filter Bypass
|
|
29000
Description:
(Description Provided by CVE) : Unspecified vulnerability in RS Gallery2 (com_rsgallery2) 1.11.3 and earlier for Joomla! has unspecified impact and attack vectors, related to lack of "hardened language files."
|
2006-06-30
|
RS Gallery2 for Joomla Unrestricted File Upload Command Execution
|
|
27934
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Chamberland Technology ezWaiter 3.0 Online and possibly Enterprise Software (aka enterprise edition) allow remote attackers to inject arbitrary web script or HTML via the (1) itemfor (aka "Who is this item for?") and (2) special (aka "Special Instructions") parameters to item.php, which is accessed from showorder.php, or (3) unspecified parameters to the login form at login.php.
|
2006-06-30
|
ezWaiter item.php Multiple Parameter XSS
|
