Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-05-16 | CVE-2006-2419 | Cross-Site Scripting vulnerability in Directory Listing Script Cross-site scripting (XSS) vulnerability in index.php in Directory Listing Script allows remote attackers to inject arbitrary web script or HTML via the dir parameter. network php | 4.3 |
2006-05-16 | CVE-2006-2418 | Cross-Site Scripting vulnerability in PHPmyadmin 2.8.0.3 Cross-site scripting (XSS) vulnerabilities in certain versions of phpMyAdmin before 2.8.0.4 allow remote attackers to inject arbitrary web script or HTML via the db parameter in unknown scripts. network phpmyadmin | 6.8 |
2006-05-16 | CVE-2006-2417 | Cross-Site Scripting vulnerability in PHPmyadmin 2.8.0.1/2.8.0.2/2.8.0.3 Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.x before 2.8.0.4 allows remote attackers to inject arbitrary web script or HTML via the theme parameter in unknown scripts. | 4.3 |
2006-05-16 | CVE-2006-2416 | SQL Injection vulnerability in E107 SQL injection vulnerability in class2.php in e107 0.7.2 and earlier allows remote attackers to execute arbitrary SQL commands via a cookie as defined in $pref['cookie_name']. | 5.1 |
2006-05-16 | CVE-2006-2415 | Cross-Site Scripting vulnerability in Flexchat Multiple cross-site scripting (XSS) vulnerabilities in FlexChat 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) username and (2) CFTOKEN parameter in (a) index.cfm and (3) CFTOKEN and (4) CFID parameter in (b) chat.cfm. network flexchat | 5.8 |
2006-05-16 | CVE-2006-2414 | Remote Information Disclosure vulnerability in Dovecot Directory traversal vulnerability in Dovecot 1.0 beta and 1.0 allows remote attackers to list files and directories under the mbox parent directory and obtain mailbox names via ".." sequences in the (1) LIST or (2) DELETE IMAP command. | 5.0 |
2006-05-16 | CVE-2006-2413 | Remote Denial of Service vulnerability in GNUnet Empty UDP Datagram GNUnet before SVN revision 2781 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an empty UDP datagram, possibly involving FIONREAD errors. | 5.0 |
2006-05-16 | CVE-2006-2412 | Remote Buffer Overflow and Denial Of Service vulnerability in Raydium The raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a large ID, which causes an invalid memory access (buffer over-read). | 5.0 |
2006-05-16 | CVE-2006-2411 | Remote Buffer Overflow and Denial Of Service vulnerability in Raydium Buffer overflow in raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to execute arbitrary code by sending packets with long global variables to the client. | 7.5 |
2006-05-16 | CVE-2006-2410 | Remote Buffer Overflow and Denial Of Service vulnerability in Raydium raydium_network_netcall_exec function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a packet of type 0xFF, which causes a null dereference. | 5.0 |