Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-04-25 | CVE-2006-2005 | Remote Code Execution vulnerability in Clansys 1.1 Eval injection vulnerability in index.php in ClanSys 1.1 allows remote attackers to execute arbitrary PHP code via PHP code in the page parameter, as demonstrated by using an "include" statement that is injected into the eval statement. | 7.5 |
| 2006-04-25 | CVE-2006-2004 | SQL Injection vulnerability in Michael Romedahl RI Blog 1.1 Multiple SQL injection vulnerabilities in RI Blog 1.1 allow remote attackers to execute arbitrary SQL command via the (1) username or (2) password fields. | 7.5 |
| 2006-04-25 | CVE-2006-2003 | Cross-Site Scripting vulnerability in Community Architect Guestbook Cross-site scripting (XSS) vulnerability in cgi-bin/guest in Community Architect Guestbook allows remote attackers to inject arbitrary web script or HTML by signing the guestbook, which is displayed by fsguestbook.html. network community-architect | 4.3 |
| 2006-04-25 | CVE-2006-2002 | Remote File Include vulnerability in Mygamingladder 7.0 PHP remote file inclusion vulnerability in stats.php in MyGamingLadder 7.0 allows remote attackers to execute arbitrary PHP code via a URL in the dir[base] parameter. | 5.0 |
| 2006-04-25 | CVE-2006-2001 | Cross-Site Scripting vulnerability in Scry Gallery Scry Gallery 1.1 Cross-site scripting (XSS) vulnerability in index.php in Scry Gallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the p parameter. network scry-gallery | 4.3 |
| 2006-04-25 | CVE-2006-2000 | Cross-Site Scripting vulnerability in Logmethods 0.9 Cross-site scripting (XSS) vulnerability in /lms/a2z.jsp in logMethods 0.9 allows remote attackers to inject arbitrary web script or HTML via the kwd parameter. network logmethods | 4.3 |
| 2006-04-25 | CVE-2006-1999 | Denial Of Service vulnerability in Openttd 0.4.7 The multiplayer menu in OpenTTD 0.4.7 allows remote attackers to cause a denial of service via a UDP packet with an incorrect size, which causes the client to return to the main menu. | 5.0 |
| 2006-04-25 | CVE-2006-1998 | Denial Of Service vulnerability in OpenTTD OpenTTD 0.4.7 and earlier allows local users to cause a denial of service (application exit) via a large invalid error number, which triggers an error. | 2.1 |
| 2006-04-25 | CVE-2006-1997 | Unspecified vulnerability in Sybase Pylon Anywhere Unspecified vulnerability in Sybase Pylon Anywhere groupware synchronization server before 7.0 allows local users to obtain sensitive information such as email and PIM data of another user via unknown attack vectors. | 2.1 |
| 2006-04-25 | CVE-2006-1996 | Cross-Site Scripting vulnerability in Scry Gallery Scry Gallery 1.1 Scry Gallery 1.1 allows remote attackers to obtain sensitive information via an invalid p parameter, which reveals the path in an error message. | 5.0 |