Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-25 | CVE-2006-2583 | Remote File Include vulnerability in Nucleus CMS GLOBALS[DIR_LIBS] Parameter PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter. | 5.1 |
| 2006-05-25 | CVE-2006-2582 | Remote Security vulnerability in Rwiki The editing form in RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to execute arbitrary Ruby code via unknown attack vectors. | 7.5 |
| 2006-05-25 | CVE-2006-2581 | Cross-Site Scripting vulnerability in Rwiki 2.1.0/2.1.0Pre1/2.1.0Pre2 Cross-site scripting (XSS) vulnerability in Wiki content in RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. network rwiki | 4.3 |
| 2006-05-24 | CVE-2006-2580 | Remote vulnerability in HP OpenView Network Node Manager Multiple unspecified vulnerabilities in HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, and 7.50 allow remote attackers to gain privileged access, execute arbitrary commands, or create arbitrary files via unknown vectors. | 7.5 |
| 2006-05-24 | CVE-2006-2579 | Remote Arbitrary Command Execution vulnerability in HP Openview Storage Data Protector 5.1/5.5 Unspecified vulnerability in HP OpenView Storage Data Protector 5.1 and 5.5 allows remote attackers to execute arbitrary code via unknown vectors. | 7.5 |
| 2006-05-24 | CVE-2006-2578 | Remote Security vulnerability in Esyndicat Directory 1.2 admin/cron.php in eSyndicat Directory 1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include arbitrary files and possibly execute arbitrary PHP code via a null-terminated value in the path_to_config parameter. | 5.1 |
| 2006-05-24 | CVE-2006-2577 | Remote Security vulnerability in Docebo Multiple PHP remote file inclusion vulnerabilities in Docebo 3.0.3 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in (1) where_cms, (2) where_lms, (3) where_upgrade, (4) BBC_LIB_PATH, and (5) BBC_LANGUAGE_PATH parameters in various unspecified scripts. | 5.1 |
| 2006-05-24 | CVE-2006-2576 | Remote Security vulnerability in Docebo Multiple PHP remote file inclusion vulnerabilities in Docebo 3.0.3 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in (1) GLOBALS[where_framework] to (a) lib.simplesel.php, (b) lib.filelist.php, (c) tree.documents.php, (d) lib.repo.php, and (e) lib.php, and (2) GLOBALS[where_scs] to (f) lib.teleskill.php. | 5.1 |
| 2006-05-24 | CVE-2006-2575 | Remote Denial of Service vulnerability in Pyrosoft INC Netpanzer 0.8 The setFrame function in Lib/2D/Surface.hpp for NetPanzer 0.8 and earlier allows remote attackers to cause a denial of service (crash) via a client flag (frameNum) that is greater than 41, which triggers an assert error. | 5.0 |
| 2006-05-24 | CVE-2006-2574 | Local Privilege Escalation vulnerability in Retired: HP-UX Software Distributor Multiple unspecified vulnerabilities in Software Distributor in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allow local users to gain privileges via unspecified attack vectors. | 7.2 |