| OSVDB ID | Disclosure Date | Title |
|---|
|
46574
Description:
eSHOP100 contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'SUB' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-30
|
eSHOP100 index.php SUB Variable SQL Injection
|
|
46580
Description:
BareNuked CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/index.php' script not properly sanitizing user-supplied input to the 'password' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-30
|
BareNuked CMS admin/index.php password Variable SQL Injection
|
|
46692
Description:
(Description Provided by CVE) : Soldner Secret Wars 33724 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a large numeric value in a 0x80 data block.
|
2008-06-30
|
Soldner Secret Wars Crafted UDP Packet Handling Remote DoS
|
|
46637
Description:
(Description Provided by CVE) : Directory traversal vulnerability in search.php in Pivot 1.40.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the t parameter.
|
2008-06-30
|
Pivot search.php t Variable Traversal Arbitrary File Access
|
|
46636
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in hioxBannerRotate.php in HIOX Banner Rotator (HBR) 1.3, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the hm parameter.
|
2008-06-30
|
HIOX Banner Rotator (HBR) hioxBannerRotate.php hm Variable Remote File Inclusion
|
|
46690
Description:
(Description Provided by CVE) : Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE) library 7.7 allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a regular expression that begins with an option and contains multiple branches.
|
2008-06-30
|
PCRE pcre_compile.c Crafted Pattern Handling Overflow
|
|
46881
Description:
(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in admin.php in myWebland myBloggie 2.1.6 allows remote attackers to perform edit actions as administrators. NOTE: this can be leveraged to execute SQL commands by also exploiting CVE-2007-1899.
|
2008-06-30
|
myBloggie admin.php Edit Actions CSRF
|
|
46884
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Farsi Script (aka FaScript) FaName 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) key or (2) desc parameter to index.php, or (3) the name parameter to page.php.
|
2008-06-30
|
FaName index.php Multiple Variable XSS
|
|
46885
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Farsi Script (aka FaScript) FaName 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) key or (2) desc parameter to index.php, or (3) the name parameter to page.php.
|
2008-06-30
|
FaName page.php name Variable XSS
|
|
46886
Description:
(Description Provided by CVE) : SQL injection vulnerability in class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might be the same issue as CVE-2008-0328.
|
2008-06-30
|
FaName class/page.php id Variable SQL Injection
|
|
46887
Description:
(Description Provided by CVE) : class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows remote attackers to obtain sensitive information via a '; (quote semicolon) sequence in the id parameter, which reveals the installation path in an error message.
|
2008-06-30
|
FaName class/page.php id Variable Error Message Path Disclosure
|
|
46888
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in RSS-aggregator 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) IdFlux parameter to admin/fonctions/supprimer_flux.php and the (2) IdTag parameter to admin/fonctions/supprimer_tag.php.
|
2008-06-30
|
RSS-aggregator admin/fonctions/supprimer_flux.php IdFlux Variable SQL Injection
|
|
46889
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in RSS-aggregator 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) IdFlux parameter to admin/fonctions/supprimer_flux.php and the (2) IdTag parameter to admin/fonctions/supprimer_tag.php.
|
2008-06-30
|
RSS-aggregator admin/fonctions/supprimer_tag.php IdTag Variable SQL Injection
|
|
46986
Description:
(Description Provided by CVE) : Directory traversal vulnerability in patch.py in Mercurial 1.0.1 allows user-assisted attackers to modify arbitrary files via ".." (dot dot) sequences in a patch file.
|
2008-06-30
|
Mercurial patch.py Patch File Traversal Arbitrary File Access
|
|
47052
Description:
(Description Provided by CVE) : SQL injection vulnerability in chatbox.php in pSys 0.7.0 Alpha, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the showid parameter.
|
2008-06-30
|
pSys chatbox.php showid Variable SQL Injection
|
|
47467
Description:
(Description Provided by CVE) : Use after free vulnerability in the _gnutls_handshake_hash_buffers_clear function in lib/gnutls_handshake.c in libgnutls in GnuTLS 2.3.5 through 2.4.0 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via TLS transmission of data that is improperly used when the peer calls gnutls_handshake within a normal session, leading to attempted access to a deallocated libgcrypt handle.
|
2008-06-30
|
GnuTLS lib/gnutls_handshake.c _gnutls_handshake_hash_buffers_clear Function Remote DoS
|
|
46632
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite loop, or memory consumption) via (a) unspecified vectors in the (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, and (9) TGA decoder readers; and (b) the GetImageCharacteristics function in magick/image.c, as reachable from a crafted (10) PNG, (11) JPEG, (12) BMP, or (13) TIFF file.
|
2008-06-29
|
GraphicsMagick GetImageCharacteristics() Function File Comment Handling DoS
|
|
46633
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite loop, or memory consumption) via (a) unspecified vectors in the (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, and (9) TGA decoder readers; and (b) the GetImageCharacteristics function in magick/image.c, as reachable from a crafted (10) PNG, (11) JPEG, (12) BMP, or (13) TIFF file.
|
2008-06-29
|
GraphicsMagick Multiple Decoders Unspecified DoS
|
|
46709
Description:
Unknown / Incomplete
|
2008-06-29
|
Direct Web Rendering (DWR) Multiple Unspecified XSS
|
|
46626
Description:
Unknown / Incomplete
|
2008-06-28
|
S.T.A.L.K.E.R.: Shadow of Chernobyl IPureServer::_Recieve Function Remote Overflow
|
|
46627
Description:
Unknown / Incomplete
|
2008-06-28
|
S.T.A.L.K.E.R.: Shadow of Chernobyl NET_Compressor::Decompress Function Remote Overflow DoS
|
|
46628
Description:
Unknown / Incomplete
|
2008-06-28
|
S.T.A.L.K.E.R.: Shadow of Chernobyl MultipacketReciever::RecievePacket Function Remote DoS
|
|
46573
Description:
Online Booking Manager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'checkavail.php' script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-28
|
Online Booking Manager checkavail.php id Variable SQL Injection
|
|
47051
Description:
(Description Provided by CVE) : SQL injection vulnerability in the beamospetition (com_beamospetition) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pet parameter to index.php.
|
2008-06-28
|
Beamospetition Component for Joomla! index.php pet Variable SQL Injection
|
|
46572
Description:
Unknown / Incomplete
|
2008-06-27
|
AceFTP Client LIST Command Traversal Arbitrary File Overwrite
|
|
47007
Description:
(Description Provided by CVE) : Memory leak in Pidgin 2.0.0, and possibly other versions, allows remote attackers to cause a denial of service (memory consumption) via malformed XML documents.
|
2008-06-27
|
Pidgin Malformed XML Document Handling Memory Leak DoS
|
|
47008
Description:
(Description Provided by CVE) : The UPnP functionality in Pidgin 2.0.0, and possibly other versions, allows remote attackers to trigger the download of arbitrary files and cause a denial of service (memory or disk consumption) via a UDP packet that specifies an arbitrary URL.
|
2008-06-27
|
Pidgin UPnP Functionality Crafted UDP Packet Arbitrary File Download
|
|
46536
Description:
Unknown / Incomplete
|
2008-06-27
|
mask PHP File Manager (mPFM) Shell Feature Remote Configuration Disclosure
|
|
46534
Description:
Unknown / Incomplete
|
2008-06-27
|
testMaker Unspecified Arbitrary PHP Code Execution
|
|
46575
Description:
Unknown / Incomplete
|
2008-06-27
|
Cybozu Products Unspecified CSRF
|
|
46530
Description:
Unknown / Incomplete
|
2008-06-27
|
Yazd Forum Software search.jsp q Variable XSS
|
|
46531
Description:
Unknown / Incomplete
|
2008-06-27
|
Yazd Forum Software error.jsp msg Variable XSS
|
|
46532
Description:
Unknown / Incomplete
|
2008-06-27
|
Yazd Forum Software userAccount.jsp msg Variable XSS
|
|
46566
Description:
SePortal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'poll.php' script not properly sanitizing user-supplied input to the 'poll_id' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-27
|
SePortal poll.php poll_id Variable SQL Injection
|
|
46567
Description:
SePortal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'staticpages.php' script not properly sanitizing user-supplied input to the 'sp_id' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-27
|
SePortal staticpages.php sp_id Variable SQL Injection
|
|
46568
Description:
Philboard contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'forum.asp' script not properly sanitizing user-supplied input to the 'forumid' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-27
|
Philboard forum.asp forumid Variable SQL Injection
|
|
46569
Description:
Unknown / Incomplete
|
2008-06-27
|
Philboard search.asp searchterms Variable XSS
|
|
46655
Description:
AShop Deluxe contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'catalogue.php' script not properly sanitizing user-supplied input to the 'cat' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.
|
2008-06-27
|
AShop Deluxe catalogue.php cat Variable SQL Injection
|
|
46689
Description:
OpenLDAP contains a flaw that may allow a remote denial of service. The issue is triggered when an ASN.1 BER Network Datagram is handled unexpectedly, and will result in loss of availability for the service.
|
2008-06-26
|
OpenLDAP ASN.1 BER Network Datagram Handling Remote DoS
|
|
46578
Description:
(Description Provided by CVE) : Unspecified vulnerability in NWFS.SYS in Novell Client for Windows 4.91 SP4 has unknown impact and attack vectors, possibly related to IOCTL requests that overwrite arbitrary memory.
|
2008-06-26
|
Novell Client NWFS.SYS Unspecified Issue
|
