Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-03-12 | CVE-2006-1166 | Unspecified vulnerability in Monotone 0.25 Monotone 0.25 and earlier, when a user creates a file in a directory called "mt", and when checking out that file on a case-insensitive file system such as Windows or Mac OS X, places the file into the "MT" bookkeeping directory, which could allow context-dependent attackers to execute arbitrary Lua programs as the user running monotone. | 3.7 |
| 2006-03-12 | CVE-2006-1165 | Cross-Site Scripting vulnerability in DokuWiki Mediamanager Cross-site scripting (XSS) vulnerability in the mediamanager module in DokuWiki before 2006-03-05 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors relating to "handling EXIF data." network andreas-gohr | 4.3 |
| 2006-03-12 | CVE-2006-1164 | Input Validation vulnerability in Nodez 4.6.1.1 Nodez 4.6.1.1 and earlier stores sensitive data in the list.gtdat file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and password hashes by directly accessing list.gtdat. | 7.5 |
| 2006-03-12 | CVE-2006-1163 | Input Validation vulnerability in Nodez 4.6.1.1 Cross-site scripting (XSS) vulnerability in Nodez 4.6.1.1 allows remote attackers to inject arbitrary web script or HTML via the op parameter. network nodez | 6.8 |
| 2006-03-12 | CVE-2006-1162 | Input Validation vulnerability in Nodez 4.6.1.1 Directory traversal vulnerability in Nodez 4.6.1.1 and earlier allows remote attackers to read or include arbitrary PHP files via a .. | 5.1 |
| 2006-03-12 | CVE-2006-1161 | Input Validation vulnerability in EFS Software EFS web Server 3.2 Absolute path traversal vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote registered users to execute arbitrary code by uploading a malicious file to the Windows startup folder. | 6.5 |
| 2006-03-12 | CVE-2006-1160 | Input Validation vulnerability in EFS Software EFS web Server 3.2 Cross-site scripting (XSS) vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote attackers to inject arbitrary web script or HTML via the Description field in creating a folder or uploading a file. network efs-software | 4.3 |
| 2006-03-12 | CVE-2006-1159 | Input Validation vulnerability in EFS Software EFS web Server 3.2 Format string vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in the query string argument in an HTTP GET request. | 7.8 |
| 2006-03-12 | CVE-2006-1158 | Remote Denial of Service vulnerability in Kerio MailServer Kerio MailServer before 6.1.3 Patch 1 allows remote attackers to cause a denial of service (application crash) via a crafted IMAP LOGIN command. | 7.8 |
| 2006-03-12 | CVE-2006-1157 | HTML Injection vulnerability in ADP Forum Subject Field Cross-site scripting (XSS) vulnerability in Vz Scripts ADP Forum 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the Subject field (possibly messaggio parameter) when posting a new message in post.php. network adp | 4.3 |