Vulnerabilities

DATE	CVE	VULNERABILITY TITLE	RISK
2006-04-07	CVE-2006-1670	Multiple vulnerability in Cisco Optical Networking System and Transport Controller Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910. network low complexity cisco	7.8
2006-04-07	CVE-2006-1669	SQL Injection vulnerability in PHPheaven PHPmychat 0.14.4 SQL injection vulnerability in chat/messagesL.php3 in phpHeaven Team PHPMyChat 0.14.5 and earlier allows remote attackers to execute arbitrary SQL commands via the T parameter. network low complexity phpheaven	6.4
2006-04-07	CVE-2006-1666	Input Validation vulnerability in Arab Portal Arab Portal 2.0.1Stable SQL injection vulnerability in forum.php in Arab Portal 2.0.1 stable allows remote attackers to execute arbitrary SQL commands via the mineID parameter. network low complexity arab-portal	7.5
2006-04-07	CVE-2006-1665	Input Validation vulnerability in Arab Portal Arab Portal 2.0.1Stable Multiple cross-site scripting (XSS) vulnerabilities in Arab Portal 2.0.1 stable allow remote attackers to inject arbitrary web script or HTML via the (1) adminJump and (2) forum_middle parameters in (a) forum.php, and the (3) form parameter in (b) members.php, (c) pm.php, and (d) mail.php. network high complexity arab-portal	2.6
2006-04-07	CVE-2006-1664	Buffer Overflow vulnerability in Xine-Lib Malformed MPEG Stream Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream. network low complexity xine	7.5
2006-04-07	CVE-2006-1662	Unspecified vulnerability in Limbo CMS Limbo CMS 1.0.4.1/1.0.4.2 The frontpage option in Limbo CMS 1.0.4.2 and 1.0.4.1 allows remote attackers to execute arbitrary PHP commands via the Itemid parameter in index.php. network low complexity limbo-cms	7.5
2006-04-07	CVE-2006-1661	Cross-Site Scripting vulnerability in SK Soft SKForum Multiple cross-site scripting (XSS) vulnerabilities in SKForum 1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) areaID parameter in area.View.action, (2) time parameter in planning.View.action, and (3) userID parameter in user.View.action. network sk-soft	6.8
2006-04-07	CVE-2006-1660	Cross-Site Scripting vulnerability in Image Gallery Cross-site scripting (XSS) vulnerability in image_desc.php in Softbiz Image Gallery allows remote attackers to inject arbitrary web script or HTML via msg parameter. network softbiz	6.8
2006-04-07	CVE-2006-1659	SQL Injection vulnerability in Softbiz Image Gallery Multiple SQL injection vulnerabilities in Softbiz Image Gallery allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in image_desc.php, (2) provided parameter in template.php, (3) cid parameter in suggest_image.php, (4) img_id parameter in insert_rating.php, and (5) cid parameter in images.php. network low complexity softbiz	6.4
2006-04-07	CVE-2006-1658	HTML Injection vulnerability in Chucky A. Ivey N.T. 1.1.0 Direct static code injection vulnerability in ticker.db.php in Chucky A. network low complexity chucky-a-ivey	7.5

Vulnerabilities {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities"}]}

Vulnerabilities