Loading...
Creditee: Tim Brown
| Disc. Date | OSVDB ID | CVEID | Title |
|---|---|---|---|
| 2011-10-03 | 76016 | 2011-3365 | KDE KSSL Certificate Text Format CN Field RTF Data Parsing Certificate Spoofing Weakness |
| 2011-10-03 | 76021 | 2011-3366 | rekonq Certificate Text Format CN Field RTF Data Parsing Certificate Spoofing Weakness |
| 2011-09-04 | 75177 | OpenVAS ovaldi -r Parameter Temporary File Symlink Arbitrary File Overwrite | |
| 2011-07-26 | 76136 | 2011-3367 | Arora Certificate Text Format CN Field RTF Data Parsing Certificate Spoofing Weakness |
| 2011-07-26 | 76137 | Psi Certificate Text Format CN Field RTF Data Parsing Certificate Spoofing Weakness | |
| 2011-07-25 | 74180 | 2011-2725 | KDE kdeutils Ark Traversal Arbitrary File Deletion |
| 2011-06-29 | 76456 | 2011-4061 | IBM DB2 db2rspgn libkbb.so Path Subversion Arbitrary DLL Injection Code Execution |
| 2011-06-29 | 76457 | 2011-4061 | IBM DB2 kbbacf1 libkbb.so Path Subversion Arbitrary DLL Injection Code Execution |
| 2011-03-23 | 71876 | 2011-1168 | KDE Konqueror khtml/khtml_part.cpp KHTMLPart::htmlError() Function Error Page XSS |
| 2011-03-10 | 71784 | 2011-4060 | QNX Neutrino RTOS LD_DEBUG_OUTPUT Environment Variable Arbitrary File Overwrite |
| 2011-01-18 | 70639 | 2011-0018 | OpenVAS Manager manage_sql.c Email Function OMP Request Command Injection |
| 2011-01-18 | 70687 | 2011-0650 | Greenbone Security Assistant OpenVAS Manager Arbitrary Command Execution CSRF |
| 2010-11-05 | 68994 | 2010-3316 | Linux-PAM pam_xauth Module run_coprocess() Function Process Limit Bypass |
| 2010-09-22 | 68214 | 2010-3261 | RSA Authentication Agent Unspecified Traversal Arbitrary File Access |
| 2010-08-30 | 67964 | 2010-2952 | Apache Traffic Server Transaction ID / Source Port Randomization Weakness DNS Cache Poisoning |
| 2010-08-17 | 67276 | Linux-PAM pam_xauth Module Incorrect Return Value Check Privilege Escalation | |
| 2010-07-18 | 66568 | 2010-2536 | rekonq Error Page URI XSS |
| 2010-03-29 | 67670 | 2009-2936 | Varnish Server CLI Unauthenticated Remote Command Execution |
| 2009-12-07 | 66841 | 2009-4975 | QtDemoBrowser webview.cpp Nonexistent Domain Name XSS |
| 2009-11-04 | 62289 | 2009-4647 | Accellion File Transfer Appliance Web Interface Audit Log username Parameter XSS |
| 2009-11-04 | 62290 | 2009-4645 | Accellion File Transfer Appliance web_client_user_guide.html lang Parameter Traversal Arbitrary File Access |
| 2009-11-04 | 62520 | 2009-4644 | Accellion Secure File Transfer Appliance ping Command Shell Metacharacter Arbitrary Command Execution |
| 2009-11-04 | 62521 | 2009-4646 | Accellion Secure File Transfer Appliance SNMP Public Community String Update Request Arbitrary Shell Command Injection |
| 2009-11-04 | 62522 | 2009-4648 | Accellion Secure File Transfer Appliance Multiple Command Restriction Weakness Local Privilege Escalation |
| 2009-10-27 | 60913 | KDE Ark KHTML XMLHttpRequest Implementation KIO Slave Arbitrary File Access | |
| 2009-10-06 | 58972 | OpenVAS openvassd utils.c Temporary File Handling Race Condition Arbitrary File Overwrite | |
| 2009-07-06 | 56477 | 2009-2354 | NullLogic Groupware Login Page auth_checkpass Function username Parameter SQL Injection |
| 2009-07-06 | 56476 | 2009-2355 | NullLogic Groupware Forum Module fmessagelist Function DoS |
| 2009-07-06 | 56475 | 2009-2356 | NullLogic Groupware pgsqlQuery Function Remote Overflow |
| 2009-07-06 | 56465 | 2009-2357 | TekRADIUS Default Configuration sa Account Use |
| 2009-07-05 | 55832 | 2009-2359 | TekRADIUS Users GUI Browse Users SQL Injection |
| 2009-07-05 | 55833 | 2009-2359 | TekRADIUS trcli -r Command Line Argument SQL Injection |
| 2009-04-12 | 55773 | 2009-2358 | TekRADIUS TekRADIUS.ini Permission Weakness Database Credentials Local Disclosure |
| 2008-11-14 | 50033 | 2008-5849 | Check Point VPN-1 ICMP Error Message Internal IP Disclosure |
| 2008-09-24 | 48912 | 2008-4318 | Observer whois.php query Variable Arbitrary Shell Command Execution |
| 2008-09-24 | 48913 | 2008-4318 | Observer netcmd.php query Variable Arbitrary Shell Command Execution |
| 2008-07-30 | 47530 | 2008-7092 | Affinium Campaign Bookmarks PageName Parameter XSS |
| 2008-07-30 | 47529 | 2008-7093 | Affinium Campaign Folder Name Manipulation Traversal Arbitrary File Access |
| 2008-07-30 | 47528 | 2008-7092 | Affinium Campaign updateOfferTemplateSubmit.do displayIcon Parameter XSS |
| 2008-07-30 | 47527 | Affinium Campaign CampaignListener ActiveX Input XSS | |
| 2008-07-30 | 47520 | 2008-7092 | Affinium Campaign campaignDetails.do id Parameter XSS |
| 2008-07-30 | 47519 | 2008-7093 | Affinium Campaign CampaignListener Traversal Arbitrary File Access |
| 2008-07-30 | 47518 | 2008-7094 | Affinium Campaign CampaignListener Malformed Length Field Remote DoS |
| 2008-07-30 | 47521 | 2008-7092 | Affinium Campaign offerDetails.do id Parameter XSS |
| 2008-07-30 | 47522 | 2008-7092 | Affinium Campaign Campaign Script Multiple Parameter XSS |
| 2008-07-30 | 47523 | 2008-7092 | Affinium Campaign runAllFlowchart.do sessionID Parameter XSS |
| 2008-07-30 | 47524 | 2008-7092 | Affinium Campaign updateOfferTemplatePage.do id Parameter XSS |
| 2008-07-30 | 47525 | 2008-7092 | Affinium Campaign /manager/jsp/test.jsp affiniumUserName Parameter XSS |
| 2008-07-30 | 47526 | 2008-7092 | Affinium Campaign main.do affiniumUserName Parameter XSS |
| 2007-11-20 | 38835 | 2007-6100 | phpMyAdmin index.php convcharset Parameter XSS |
| 2007-11-07 | 39960 | 2007-5942 | Bandersnatch index.php Multiple Variable Error Message Path Disclosure |
| 2007-11-07 | 41941 | 2007-6001 | Bandersnatch index.php Multiple Parameter XSS |
| 2007-10-18 | 41110 | 2007-5694 | SiteBar translator.php dir Parameter Traversal Arbitrary File Access |
| 2007-10-18 | 41355 | 2007-5692 | SiteBar integrator.php lang Parameter XSS |
| 2007-10-18 | 41356 | 2007-5692 | SiteBar New Password Action token Parameter XSS |
| 2007-10-18 | 41357 | 2007-5692 | SiteBar Folder Properties Action nid_acl Parameter XSS |
| 2007-10-18 | 41358 | 2007-5692 | SiteBar command.php Modify User Action uid Parameter XSS |
| 2007-10-18 | 41359 | 2007-5692 | SiteBar index.php target Parameter XSS |
| 2007-10-18 | 41581 | 2007-5695 | SiteBar command.php forward Variable Arbitrary Site Redirect |
| 2007-10-18 | 43604 | 2007-5693 | Translation Module for SiteBar (translator.php) upd cmd Action edit Variable Arbitrary PHP Code Execution |
| 2007-10-18 | 43760 | 2007-5492 | Translation Module for SiteBar (translator.php) value Variable Arbitrary PHP Code Execution |
| 2007-07-27 | 39385 | 2007-3388 | QT QTextEdit Error Message Handling Remote Format String |
| 2007-07-27 | 38268 | 2007-3909 | Bandersnatch index.php Multiple Parameter SQL Injection |
| 2007-07-27 | 38269 | 2007-3910 | Bandersnatch Jabber Resource Name XSS |
| 2007-07-19 | 36112 | 2007-3677 | eVisit Analyst idsp1.pl id SQL Injection |
| 2007-07-19 | 36113 | 2007-3677 | eVisit Analyst ip.pl id Parameter SQL Injection |
| 2007-07-19 | 36114 | 2007-3677 | eVisit Analyst einsite_director.pl id SQL Injection |
| 2007-07-12 | 38083 | 2007-3714 | ImgSvr Default URI Traversal Arbitrary File Access |
| 2007-07-10 | 46980 | 2007-4152 | Visionsoft Audit on Demand Service (VSAOD) Audit Schedule Session Replay Weakness |
| 2007-07-10 | 46981 | 2007-4151 | Visionsoft Audit on Demand Service (VSAOD) LOG.ON Command Logging Path Disclosure |
| 2007-07-10 | 46982 | 2007-4151 | Visionsoft Audit on Demand Service (VSAOD) VER Command Server Response Version Disclosure |
| 2007-07-10 | 46983 | 2007-4151 | Visionsoft Audit on Demand Service (VSAOD) Connection Banner Version Disclosure |
| 2007-07-10 | 46979 | 2007-4150 | Visionsoft Audit on Demand Service (VSAOD) Password Handling Weak Encryption |
| 2007-07-10 | 46977 | 2007-4148 | Visionsoft Audit on Demand Service (VSAOD) LOG Command filename Overflow |
| 2007-07-10 | 42462 | 2007-4149 | Visionsoft Audit on Demand Service (VSAOD) Unauthenticated Privileged Command Execution |
| 2007-06-10 | 37165 | 2007-3189 | JFFNMS auth.php user Parameter XSS |
| 2007-06-10 | 37166 | 2007-3190 | JFFNMS auth.php Multiple Parameter SQL Injection |
| 2007-06-10 | 37167 | 2007-3191 | JFFNMS admin/adm/test.php PHP Information Disclosure |
| 2007-06-10 | 37168 | 2007-3192 | JFFNMS admin/setup.php Direct Request Authentication Bypass |
| 2007-05-02 | 36159 | D-Link DSL-G624T home_RelaodHref.htm var:RelaodHref Parameter XSS | |
| 2007-03-11 | 38622 | 2007-4074 | CSTR Festival on Linux Unauthenticated Arbitrary Command Execution |
| 2007-02-06 | 33116 | 2007-0838 | FreeProxy Self Referencing Host Header DoS |
| 2006-07-22 | 27446 | 2006-3848 | IP Calculator Wrapper REQUEST_URI XSS |
| 2006-07-03 | 28214 | 2006-3546 | ImgSvr Long HTTP POST Request DoS |
| 2005-11-03 | 21029 | Movable Type Cookie Authentication Credential Persistence | |
| 2005-11-03 | 21030 | Movable Type Blog Creation Arbitrary Blog Path Manipulation | |
| 2005-11-03 | 21031 | Movable Type Create Entry Arbitrary Script Injection | |
| 2005-11-03 | 21032 | Movable Type mt-comments.cgi Arbitrary Site Redirect | |
| 2005-11-03 | 21033 | Movable Type File Upload Arbitrary PHP Code Execution | |
| 2005-11-03 | 24115 | 2005-4689 | Movable Type Cookie Authentication Credential Disclosure |
| 2005-11-03 | 24110 | 2005-4690 | Movable Type Top-level Directory Manipulation Weakness |
| 2005-09-22 | 19601 | 2005-3101 | Movable Type Error Message User Enumeration |
| 2005-09-22 | 19602 | 2005-3102 | Movable Type File Upload Extension Validation Weakness |
| 2005-09-22 | 19603 | 2005-3103 | Movable Type New Blog Entry Multiple Field XSS |
| 2005-09-22 | 19604 | 2005-3104 | Movable Type mt-comments.cgi Arbitrary External Site Redirection |
| 2005-08-13 | 19268 | 2005-2583 | Mentor ADSL-FR4II Router Undocumented Administration Server |
| 2005-07-19 | 18751 | 2005-2584 | BONA ADSL-FR4II Router Default Null Administrator Password |
| 2005-07-19 | 18752 | 2005-2585 | BONA ADSL-FR4II Router TCP Connection Saturation DoS |
| 2005-07-19 | 18753 | 2005-2586 | BONA ADSL-FR4II Router Config File Cleartext Admin Password Storage |
| 2002-11-12 | 59173 | 2002-2399 | W3Mail viewAttachment.cgi file Parameter Traversal Arbitrary File Access |
| 2002-07-25 | 59547 | 2002-2331 | W3Mail Crafted MIME Attachment Upload Arbitrary Code Execution |
