| OSVDB ID | Disclosure Date | Title |
|---|
|
32468
Description:
Irokez CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'functions/section script not properly sanitizing user input supplied to the 'GLOBALS[PTH][classes]' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2006-12-25
|
Irokez CMS functions/sections.func.php GLOBALS[PTH][classes] Parameter Remote File Inclusion
|
|
32469
Description:
Irokez CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'functions/users.func.php' script not properly sanitizing user input supplied to the 'GLOBALS[PTH][classes]' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2006-12-25
|
Irokez CMS functions/users.func.php GLOBALS[PTH][classes] Parameter Remote File Inclusion
|
|
31581
Description:
(Description Provided by CVE) : Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name (CN) field of an SSL certificate associated with an https URL.
|
2006-12-25
|
w3m SSL Certificate Common Name Format String
|
|
31584
Description:
(Description Provided by CVE) : SQL injection vulnerability in the login form in HLstats 1.20 through 1.34 allows remote attackers to execute arbitrary SQL commands via the killLimit parameter.
|
2006-12-25
|
HLstats hlstats.php killLimit Parameter SQL Injection
|
|
33325
Description:
(Description Provided by CVE) : administration/index.php in Cahier de texte (CDT) 2.2 does not properly exit when authentication fails, which allows remote attackers to perform unauthorized administrative actions.
|
2006-12-24
|
Cahier de texte (CDT) administration/index.php Failed Authentication Privilege Escalation
|
|
33323
Description:
(Description Provided by CVE) : SQL injection vulnerability in SelGruFra.asp in chatwm 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) txtUse and (2) txtPas parameters.
|
2006-12-24
|
chatwm SelGruFra.asp Multiple Parameter SQL Injection
|
|
35153
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin allows remote attackers to inject arbitrary web script or HTML via an SWF file that uses ActionScript to trigger execution of JavaScript.
|
2006-12-24
|
vBulletin SWF ActionScript XSS
|
|
32487
Description:
(Description Provided by CVE) : pages/register/register.php in Fishyshoop 0.930 beta allows remote attackers to create arbitrary administrative users by setting the is_admin HTTP POST parameter to 1.
|
2006-12-24
|
Fishyshoop pages/register/register.php is_admin Variable Arbitrary Administrator Account Creation
|
|
31268
Description:
Ananda Real Estate contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'list.asp' script not properly sanitizing user-supplied input to the 'agent' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2006-12-24
|
Ananda Real Estate list.asp agent Parameter SQL Injection
|
|
32470
Description:
(Description Provided by CVE) : SQL injection vulnerability in detail.asp in Mxmania File Upload Manager (FUM) 1.0.6 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
2006-12-24
|
Mxmania File Upload Manager detail.asp ID Parameter SQL Injection
|
|
31588
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in shownews.php in TimberWolf 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the nid parameter.
|
2006-12-24
|
TimberWolf CMS shownews.php nid Parameter XSS
|
|
35716
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in ataturk.php in Okul Merkezi Portal 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.
|
2006-12-24
|
Okul Merkezi Portal ataturk.php page Parameter Remote File Inclusion
|
|
33321
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Future Internet allow remote attackers to execute arbitrary SQL commands via the (1) newsId or (2) categoryid parameter in a Portal.Showpage action in index.cfm, or (3) the langId parameter in index.cfm.
|
2006-12-23
|
Future Internet index.cfm Multiple Parameter SQL Injection
|
|
33322
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.cfm in Future Internet allows remote attackers to inject arbitrary web script or HTML via the categoryId parameter in a Portal.ShowPage action.
|
2006-12-23
|
Future Internet index.cfm categoryId Parameter XSS
|
|
35443
Description:
(Description Provided by CVE) : Certain forms in phpBB before 2.0.22 lack session checks, which has unknown impact and remote attack vectors.
|
2006-12-23
|
phpBB Form Session Check Unspecified Issue
|
|
35442
Description:
(Description Provided by CVE) : Unspecified vulnerability in phpBB before 2.0.22 has unknown impact and remote attack vectors related to a "negative start parameter."
|
2006-12-23
|
phpBB "negative start parameter" Unspecified Issue
|
|
36177
Description:
(Description Provided by CVE) : myprofile.asp in Enthrallweb eClassifieds does not properly validate the MM_recordId parameter during profile updates, which allows remote authenticated users to modify certain profile fields of another account by specifying that account's username in a modified MM_recordId parameter.
|
2006-12-23
|
Enthrallweb eClassifieds myprofile.asp MM_recordId Arbitrary Account Manipulation
|
|
35441
Description:
(Description Provided by CVE) : Unspecified vulnerability in phpBB before 2.0.22 has unknown impact and remote attack vectors related to "criteria for 'bad' redirection targets."
|
2006-12-23
|
phpBB "criteria for bad redirection targets" Unspecified Issue
|
|
40977
Description:
(Description Provided by CVE) : IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not properly revoke privileges on methods, which allows remote authenticated users to execute a method after revocation until the routine auth cache is flushed.
|
2006-12-23
|
IBM DB2 Universal Database Method Revocation Bypass
|
|
32489
Description:
(Description Provided by CVE) : The (1) settings.php and (2) subscribers.php scripts in Open Newsletter 2.5 and earlier do not exit when authentication fails, which allows remote attackers to perform unauthorized administrative actions, or execute arbitrary code in conjunction with another vulnerability.
|
2006-12-23
|
OpenNewsletter Admin Authentication Bypass
|
|
32456
Description:
(Description Provided by CVE) : myprofile.asp in Enthrallweb eNews does not properly validate the MM_recordId parameter during profile updates, which allows remote authenticated users to modify certain profile fields of another account by specifying that account's username in a modified MM_recordId parameter.
|
2006-12-23
|
Enthrallweb eNews myprofile.asp Arbitrary Account Profile Manipulation
|
|
32455
Description:
(Description Provided by CVE) : SQL injection vulnerability in newsdetail.asp in Enthrallweb eJobs allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
2006-12-23
|
Enthrallweb eJobs newsdetail.asp ID Parameter SQL Injection
|
|
32488
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in misc.php in SH-News 0.93, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the news_cfg[path] parameter.
|
2006-12-23
|
SH-News misc.php news_cfg Parameter Remote File Inclusion
|
|
32454
Description:
(Description Provided by CVE) : SQL injection vulnerability in actualpic.asp in Enthrallweb ePages allows remote attackers to execute arbitrary SQL commands via the Biz_ID parameter.
|
2006-12-23
|
Enthrallweb ePages actualpic.asp Biz_ID Parameter SQL Injection
|
|
32452
Description:
Unknown / Incomplete
|
2006-12-23
|
Enthrallweb ePhotos subLevel2.asp SUB_ID Parameter SQL Injection
|
|
32451
Description:
(Description Provided by CVE) : SQL injection vulnerability in newsdetail.asp in Enthrallweb eMates 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
2006-12-23
|
Enthrallweb emates newsdetail.asp ID Parameter SQL Injection
|
|
32446
Description:
(Description Provided by CVE) : acFTP 1.5 allows remote authenticated users to cause a denial of service via a crafted argument to the (1) REST or (2) PBSZ command.
|
2006-12-23
|
acFTP REST/PBSZ Argument Handling DoS
|
|
31360
Description:
A buffer overflow exists in NetMail. The IMAP daemon fails to validate long string arguments passed to the SUBSCRIBE command resulting in a stack overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2006-12-23
|
Novell NetMail IMAP Daemon (IMAPD) SUBSCRIBE Command Remote Overflow
|
|
31361
Description:
(Description Provided by CVE) : The IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to cause a denial of service via an APPEND command with a single "(" (parenthesis) in the argument.
|
2006-12-23
|
Novell NetMail IMAP Daemon (IMAPD) APPEND Command DoS
|
|
31362
Description:
A buffer overflow exists in NetMail. The IMAP daemon fails to validate data passed with an APPEND command resulting in a stack overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2006-12-23
|
Novell NetMail IMAP Daemon (IMAPD) APPEND Command Remote Overflow
|
|
31363
Description:
A buffer overflow exists in NetMail. The NMAP server fails to validate data passed to the STOR command resulting in a stack overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2006-12-23
|
Novell NetMail NMAP STOR Command Remote Overflow
|
|
35715
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in b2verifauth.php in b2 Blog 0.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the index parameter.
|
2006-12-23
|
b2 Blog b2verifauth.php index Parameter Remote File Inclusion
|
|
33314
Description:
(Description Provided by CVE) : SQL injection vulnerability in default.asp in Efkan Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the grup parameter.
|
2006-12-22
|
Efkan Forum default.asp grup Parameter SQL Injection
|
|
32404
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.
|
2006-12-22
|
@Mail Webmail Unspecified XSS
|
|
32402
Description:
a-blog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variables upon submission to an unspecified script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-12-22
|
a-blog Unspecified XSS
|
|
41172
Description:
(Description Provided by CVE) : Unspecified vulnerability in (1) pop3d, (2) pop3ds, (3) imapd, and (4) imapds in IBM AIX 5.3.0 has unspecified impact and attack vectors, involving an "authentication vulnerability."
|
2006-12-22
|
IBM AIX bos.net.tcp.server Multiple Mail Services Unspecified Authentication Issue
|
|
32444
Description:
KISGB contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'authenticate.php' script not properly sanitizing user input supplied to the 'default_path_for_themes' and 'path_to_themes' parameters. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2006-12-22
|
KISGB authenticate.php Multiple Parameter Remote File Inclusion
|
|
32441
Description:
(Description Provided by CVE) : Directory traversal vulnerability in index.php in Matteo Lucarelli 3editor CMS 0.42 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via a .. (dot dot) in the page parameter.
|
2006-12-22
|
3editor index.php page Parameter Traversal Arbitrary File Access
|
|
31364
Description:
(Description Provided by CVE) : Multiple buffer overflows in Novell NetMail before 3.52e FTF2 allow remote attackers to execute arbitrary code (1) by appending literals to certain IMAP verbs when specifying command continuation requests to IMAPD, resulting in a heap overflow; and (2) via crafted arguments to the STOR command to the Network Messaging Application Protocol (NMAP) daemon, resulting in a stack overflow.
|
2006-12-22
|
Novell NetMail IMAP IMAP Verb Literal Remote Overflow
|
|
32595
Description:
Unknown / Incomplete
|
2006-12-22
|
Plash real_file_socket_connect() Symlink Race Condition
|
