[CLOSE] OSVDB ID : 58230 - Disclosed: 2006-08-31

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31206 - Disclosed: 2006-08-31

Description:

(Description Provided by CVE) : Lyris ListManager 8.95 allows remote authenticated users to obtain sensitive information by attempting to add a user with a ' (single quote) character in the name, which reveals the details of the underlying SQL query, possibly because of a forced SQL error or SQL injection.

[CLOSE] OSVDB ID : 28318 - Disclosed: 2006-08-31

Description:

A remote overflow exists in GDB DWARF. The compiler fails to handle 'DWARF' or 'DWARF2' information resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 28333 - Disclosed: 2006-08-31

Description:

Membrepass contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'recherchemembre.php' script not properly sanitizing user-supplied input to the 'recherche' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 28334 - Disclosed: 2006-08-31

Description:

Membrepass contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to '/include/change.php' not properly sanitizing user input supplied to the 'aifon' variable. The values passed to this variable are then stored on a configuration file which can be used by almost all other Membrepass scripts. This may allow an attacker to execute arbitrary commands leading to a loss of integrity.

[CLOSE] OSVDB ID : 28335 - Disclosed: 2006-08-31

Description:

Membrepass contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'recherche' variable upon submission to the 'recherchemembre.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 28336 - Disclosed: 2006-08-31

Description:

Membrepass contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'email' variable upon submission to the 'test.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 28301 - Disclosed: 2006-08-31

Description:

YACS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to article.php not properly sanitizing user input supplied to the 'context[path_to_root]' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 28316 - Disclosed: 2006-08-31

Description:

SnapGear contains a flaw that may allow a remote denial of service. The issue is triggered due to unspecified IPsec window replay errors, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 28371 - Disclosed: 2006-08-31

Description:

A remote overflow exists in Compression Plus. The product fails to handle the processing of ZOO archives causing an error in 'CP5DLL32.DLL' library resulting in a stack-based overflow. With a specially crafted request, an attacker can execute arbitrary code via a malicious ZOO archive with an overly large size field in the header resulting in a loss of integrity.

[CLOSE] OSVDB ID : 88027 - Disclosed: 2006-08-31

Description:

ExpressionEngine contains a flaw that is due to private messages and forum attachments generating predictable URL's. This may allow a remote attacker to guess the URL for forum attachments or private messages and gain access to the potentially sensitive content for arbitrary users.

[CLOSE] OSVDB ID : 52441 - Disclosed: 2006-08-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 29873 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29874 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29875 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29876 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29877 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29878 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29879 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29880 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in HLStats 1.34 allows remote attackers to inject arbitrary web script or HTML via the (1) game parameter in players mode, the (2) weapon parameter in weaponinfo mode, the (3) st parameter in search mode, the (4) action parameter in actioninfo mode, and the (5) map parameter in mapinfo mode.

[CLOSE] OSVDB ID : 29881 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to inject arbitrary web script or HTML via the comment parameter.

[CLOSE] OSVDB ID : 29882 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 29883 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) about, (2) again, (3) lastname, (4) email, (5) password, (6) album, (7) id, (8) table, (9) desc, (10) doc, (11) mname, (12) max, (13) htpl, (14) pheader, and possibly other parameters.

[CLOSE] OSVDB ID : 29884 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) about, (2) album, (3) id, (4) use, (5) desc, (6) doc, (7) mname, (8) max, and possibly other parameters.

[CLOSE] OSVDB ID : 29885 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : ezPortal/ztml CMS 1.0 allows remote attackers to bypass authentication controls via a direct request to the "Administration Area" script.

[CLOSE] OSVDB ID : 33795 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in John Himmelman (aka DaRk2k1) PowerPortal 1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to registering a user. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 31975 - Disclosed: 2006-08-30

Description:

PHP Advanced Transfer Manager (phpATM) contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'confirm.php' script not properly sanitizing user input supplied to the 'include_location' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 31976 - Disclosed: 2006-08-30

Description:

PHP Advanced Transfer Manager (phpATM) contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'login.php' script not properly sanitizing user input supplied to the 'include_location' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 28833 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Incomplete blacklist vulnerability in the nk_CSS function in nuked.php in Nuked-Klan 1.7 SP4.3 allows remote attackers to bypass anti-XSS features and inject arbitrary web script or HTML via JavaScript in an attribute value that is not in the blacklist, as demonstrated using the STYLE attribute of a B element.

[CLOSE] OSVDB ID : 30837 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in admin/global.php (aka the Admin CP login form) in MyBB (aka MyBulletinBoard) 1.1.7 allows remote attackers to inject arbitrary web script or HTML via the query string ($_SERVER[PHP_SELF]).

[CLOSE] OSVDB ID : 30838 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.1.7 allows remote attackers to inject arbitrary web script or HTML via a url BBCode tag that contains a javascript URI with an SGML numeric character reference and an embedded space, as demonstrated using "java& #115;cript," a different vulnerability than CVE-2006-3761.

[CLOSE] OSVDB ID : 29046 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : CHXO Feedsplitter 2006-01-21 allows remote attackers to read the source code of feedsplitter.php via the showsource function. NOTE: this issue is not a vulnerability in standard distributions, but could be an issue if the source has been modified.

[CLOSE] OSVDB ID : 29047 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in CHXO Feedsplitter 2006-01-21 allows remote attackers to read arbitrary XML files via .. (dot dot) sequences in the format parameter with a leading ".", which bypasses a security check.

[CLOSE] OSVDB ID : 29048 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Eval injection vulnerability in CHXO Feedsplitter 2006-01-21 allows remote attackers to execute arbitrary PHP code via (1) the file specified as the value of the format parameter, and possibly (2) the RSS feed.

[CLOSE] OSVDB ID : 29049 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in CHXO Feedsplitter 2006-01-21 allows remote attackers to inject arbitrary web script or HTML via the RSS feed.

[CLOSE] OSVDB ID : 28307 - Disclosed: 2006-08-30

Description:

The vulnerability is caused due to improper verification when adding users. This can be exploited by an administrative user of a list to add a new administrative user to another list on the same server by manipulating the "MEMBERS_.List_" parameter.

[CLOSE] OSVDB ID : 30971 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in LFXlib/access_manager.php in Lanifex Database of Managed Objects (DMO) 2.3 Beta and earlier allows remote attackers to execute arbitrary PHP code via the _incMgr parameter.

[CLOSE] OSVDB ID : 28278 - Disclosed: 2006-08-30

Description:

Xbiff 2 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to an error in the configuration routine which creates .xbiff2rc with file permissions set to 755, which will disclose user's POP or IMAP credentials resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 28269 - Disclosed: 2006-08-30

Description:

GTetrinet contains multiple flaws related to out-of-bounds array indexing that may allow an attacker to execute arbitrary code. The flaw exists in tetrinet.c, where a remote attacker may specify a negative number of players, which is used as an array index.

[CLOSE] OSVDB ID : 28275 - Disclosed: 2006-08-30

Description:

AIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges and execute arbitrary code with root privileges. The issue is triggered due to an unspecified error in 'dtterm'. This flaw may lead to a loss of Integrity.