Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-25 | CVE-2006-2605 | HTML Injection vulnerability in Dschat 1.0 Cross-site scripting (XSS) vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php. network dschat | 4.3 |
| 2006-05-25 | CVE-2006-2592 | Remote Security vulnerability in Dschat 1.0 Unspecified vulnerability in DSChat 1.0 allows remote attackers to execute arbitrary PHP code via the Nickname field, which is not sanitized before creating a file in a user directory. | 7.5 |
| 2006-05-25 | CVE-2006-2591 | Remote Security vulnerability in E107 0.7.5 Unspecified vulnerability in e107 before 0.7.5 has unknown impact and remote attack vectors related to an "emailing exploit". | 5.0 |
| 2006-05-25 | CVE-2006-2590 | SQL-Injection vulnerability in E107 0.7.5 SQL injection vulnerability in e107 before 0.7.5 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors. | 6.4 |
| 2006-05-25 | CVE-2006-2589 | SQL-Injection vulnerability in Mybulletinboard 1.1.1 SQL injection vulnerability in rss.php in MyBB (aka MyBulletinBoard) 1.1.1 allows remote attackers to execute arbitrary SQL commands via the comma parameter. | 6.4 |
| 2006-05-25 | CVE-2006-2588 | Unspecified vulnerability in Russcom Network PHPimages Russcom PHPImages allows remote attackers to upload files of arbitrary types by uploading a file with a .gif extension. | 5.0 |
| 2006-05-25 | CVE-2006-2587 | Remote Buffer Overflow vulnerability in Even Balance Punkbuster 1.228 Buffer overflow in the WebTool HTTP server component in (1) PunkBuster before 1.229, as used by multiple products including (2) America's Army 1.228 and earlier, (3) Battlefield 1942 1.158 and earlier, (4) Battlefield 2 1.184 and earlier, (5) Battlefield Vietnam 1.150 and earlier, (6) Call of Duty 1.173 and earlier, (7) Call of Duty 2 1.108 and earlier, (8) DOOM 3 1.159 and earlier, (9) Enemy Territory 1.167 and earlier, (10) Far Cry 1.150 and earlier, (11) F.E.A.R. | 5.0 |
| 2006-05-25 | CVE-2006-2586 | Cross-Site Scripting vulnerability in Iplogger 1.7 Cross-site scripting (XSS) vulnerability in IpLogger 1.7 and earlier allows remote attackers to inject arbitrary HTML or web script via the HTTP_REFERER header in an HTTP request. network iplogger | 5.8 |
| 2006-05-25 | CVE-2006-2585 | SQL-Injection vulnerability in Greg Donald Destiney Links Script 2.1.2 SQL injection vulnerability in Destiney Links Script 2.1.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 6.4 |
| 2006-05-25 | CVE-2006-2584 | Cross-Site Scripting vulnerability in Skyebox 1.2.0 Multiple cross-site scripting (XSS) vulnerabilities in post.php in SkyeBox 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) message parameters. network skyebox | 4.3 |