| Page(s) : 1 ... 357 358 359 360 361 362 363 364 365 366 [367] 368 369 370 371 372 373 374 375 376 377 ... | Result(s) : 8832 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.6 | 2006-05-09 | CVE-2006-2258 | cve | Cross-site scripting (XSS) vulnerability in Logon.asp in MaxxSchedule 1.0 allows remote attackers to inject arbitrary web script or HTML via the Error parameter. |
| 2.1 | 2006-05-05 | CVE-2006-2221 | cve | A third-party installer generation tool, possibly BitRock InstallBuilder, as used in products including Process-one ejabberd 1.1.1_1 and earlier, generates an installer that all... |
| 2.1 | 2006-05-05 | CVE-2006-2205 | cve | The audio_write function in NetBSD 3.0 allows local users to cause a denial of service (kernel crash) by using the audiosetinfo ioctl to change the sample rate of an audio device. |
| 2.1 | 2006-05-05 | CVE-2006-1052 | cve | The selinux_ptrace logic in hooks.c in SELinux for Linux 2.6.6 allows local users with ptrace permissions to change the tracer SID to an SID of another process. |
| 2.1 | 2006-05-04 | CVE-2006-2166 | cve | Unspecified vulnerability in the HTTP management interface in Cisco Unity Express (CUE) 2.2(2) and earlier, when running on any CUE Advanced Integration Module (AIM) or Network ... |
| 2.6 | 2006-05-04 | CVE-2006-2165 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Avactis Shopping Cart 0.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) category... |
| 2.6 | 2006-05-04 | CVE-2006-2163 | cve | Cross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart 3.33 and earlier allows remote attackers to inject arbitrary web script or HTML via the setbackurl parameter. |
| 3.6 | 2006-05-02 | CVE-2006-2147 | cve | resmgrd in resmgr for SUSE Linux and other distributions does not properly handle when access to a USB device is granted by using "usb:," notation, which grants access to all US... |
| 2.1 | 2006-05-02 | CVE-2006-1526 | cve | Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompos... |
| 2.1 | 2006-05-01 | CVE-2006-2120 | cve | The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG... |
| 2.1 | 2006-05-01 | CVE-2006-2110 | cve | Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabilities (ccaps) that allow local guest users to perform operat... |
| 2.1 | 2006-04-29 | CVE-2006-2103 | cve | SQL injection vulnerability in MyBB (MyBulletinBoard) 1.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the (1) query string ($querystring v... |
| 2.6 | 2006-04-29 | CVE-2006-2093 | cve | Nessus before 2.2.8, and 3.x before 3.0.3, allows user-assisted attackers to cause a denial of service (memory consumption) via a NASL script that calls split with an invalid se... |
| 2.1 | 2006-04-27 | CVE-2006-2071 | cve | Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permissi... |
| 3.6 | 2006-04-26 | CVE-2006-2045 | cve | The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and t... |
| 2.1 | 2006-04-25 | CVE-2006-2036 | cve | iOpus Secure Email Attachments (SEA), probably 1.0, does not properly handle passwords that consist of repetitions of a substring, which allows attackers to decrypt files by ent... |
| 3.7 | 2006-04-25 | CVE-2006-2035 | cve | Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequ... |
| 2.6 | 2006-04-25 | CVE-2006-2031 | cve | Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2.8.0.3, 2.8.0.2, 2.8.1-dev, and 2.9.0-dev allows remote attackers to inject arbitrary web script or HTML via... |
| 2.6 | 2006-04-25 | CVE-2006-2016 | cve | Multiple cross-site scripting (XSS) vulnerabilities in phpLDAPadmin 0.9.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) dn parameter in (... |
| 2.6 | 2006-04-25 | CVE-2006-2015 | cve | Cross-site scripting (XSS) vulnerability in SL_site 1.0 allows remote attackers to inject arbitrary web script or HTML via the recherche parameter in recherche.php. NOTE: other... |
| Page(s) : 1 ... 357 358 359 360 361 362 363 364 365 366 [367] 368 369 370 371 372 373 374 375 376 377 ... | Result(s) : 8832 |
