| Page(s) : 1 ... 369 370 371 372 373 374 375 376 377 378 [379] 380 381 382 383 384 385 386 387 388 389 ... | Result(s) : 8831 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2005-12-27 | CVE-2005-3341 | cve | DHIS tools DNS package (dhis-tools-dns) before 5.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files created by (1) register-q.sh and (2) r... |
| 2.6 | 2005-12-22 | CVE-2005-4494 | cve | Cross-site scripting (XSS) vulnerability in SPIP 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) spip_login.ph... |
| 2.1 | 2005-12-20 | CVE-2005-4412 | cve | Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attack... |
| 2.6 | 2005-12-19 | CVE-2005-4357 | cve | Cross-site scripting (XSS) vulnerability in phpBB 2.0.18, when "Allowed HTML tags" is enabled, allows remote attackers to inject arbitrary Javascript via a permitted HTML tag wi... |
| 2.1 | 2005-12-18 | CVE-2005-4344 | cve | Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java) setting is disabled, which allows local users to create an object despite the ... |
| 2.1 | 2005-12-15 | CVE-2005-4273 | cve | Multiple unspecified vulnerabilities in (1) getShell and (2) getCommand in IBM AIX 5.3 allow local users to append to arbitrary files. |
| 3.7 | 2005-12-15 | CVE-2005-4268 | cve | Buffer overflow in cpio 2.6-8.FC4 on 64-bit platforms, when creating a cpio archive, allows local users to cause a denial of service (crash) and possibly execute arbitrary code ... |
| 3.5 | 2005-12-13 | CVE-2005-4192 | cve | Multiple cross-site scripting (XSS) vulnerabilities in templates/notepads/notepads.inc in Horde Mnemo Note Manager H3 before 2.0.3 allow remote authenticated users to inject arb... |
| 3.5 | 2005-12-13 | CVE-2005-4191 | cve | Multiple cross-site scripting (XSS) vulnerabilities in templates/tasklists/tasklists.inc in Horde Nag Task List Manager H3 before 2.0.4 allow remote authenticated users to injec... |
| 3.5 | 2005-12-13 | CVE-2005-4190 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multi... |
| 3.5 | 2005-12-13 | CVE-2005-4189 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith H3 before 2.0.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the Calend... |
| 2.1 | 2005-12-11 | CVE-2005-4176 | cve | AWARD Bios Modular 4.50pg does not clear the keyboard buffer after reading the BIOS password during system startup, which allows local administrators or users to read the passwo... |
| 2.1 | 2005-12-11 | CVE-2005-4175 | cve | Insyde BIOS V190 does not clear the keyboard buffer after reading the BIOS password during system startup, which allows local administrators or users to read the password direct... |
| 2.1 | 2005-12-10 | CVE-2005-4151 | cve | The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier does not clear file slack space in the last cluster for the file, which... |
| 2.1 | 2005-12-09 | CVE-2005-4133 | cve | Sun Update Connection in Sun Solaris 10, when configured to use a web proxy, allows local users to obtain the proxy authentication password via (1) an unspecified vector and (2)... |
| 2.6 | 2005-12-04 | CVE-2005-3997 | cve | Zen Cart 1.2.6d and earlier, under certain PHP configurations, allows remote attackers to obtain sensitive information via direct requests to files in the admin/includes directo... |
| 2.6 | 2005-11-30 | CVE-2005-3921 | cve | Cross-site scripting (XSS) vulnerability in Cisco IOS Web Server for IOS 12.0(2a) allows remote attackers to inject arbitrary web script or HTML by (1) packets containing HTML t... |
| 2.1 | 2005-11-29 | CVE-2005-3885 | cve | The ps2epsi extension shell script (ps2epsi.sh) in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file. |
| 2.6 | 2005-11-22 | CVE-2005-3738 | cve | globals.php in Mambo Site Server 4.0.14 and earlier, when register_globals is disabled, allows remote attackers to overwrite variables in the GLOBALS array and conduct various a... |
| 2.1 | 2005-11-22 | CVE-2005-3531 | cve | fusermount in FUSE before 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose... |
| Page(s) : 1 ... 369 370 371 372 373 374 375 376 377 378 [379] 380 381 382 383 384 385 386 387 388 389 ... | Result(s) : 8831 |
