Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-03-10 | CVE-2006-1136 | Multiple vulnerability in Xerox WorkCentre / CopyCentre Buffer overflow in the PostScript file interpreter code for Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allows attackers to cause a denial of service via unknown vectors. | 5.0 |
2006-03-10 | CVE-2006-1135 | HTML Injection vulnerability in Sblog 0.7.2 Multiple cross-site scripting (XSS) vulnerabilities in sBlog 0.7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) keyword parameter to search.php or (2) username parameter to comments_do.php. network sblog | 4.3 |
2006-03-10 | CVE-2006-1134 | SQL Injection vulnerability in Jason Smith Cyboards PHP Lite 1.25 SQL injection vulnerability in CyBoards PHP Lite 1.25, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the parent parameter to (1) post.php and possibly (2) process_post.php. | 5.1 |
2006-03-10 | CVE-2006-1133 | Cross-Site Scripting vulnerability in Vbzoom 1.11 Multiple cross-site scripting (XSS) vulnerabilities in vbzoom 1.11 allow remote attackers to inject arbitrary web script or HTML via the UserID parameter to (1) comment.php or (2) contact.php. network vbzoom | 4.3 |
2006-03-10 | CVE-2006-1132 | SQL Injection vulnerability in Vbzoom 1.11 SQL injection vulnerability in show.php in vbzoom 1.11 allow remote attackers to execute arbitrary SQL commands via the MainID parameter. | 7.5 |
2006-03-10 | CVE-2006-1131 | HTML Injection vulnerability in Bitweaver 1.2.1 Cross-site scripting (XSS) vulnerability in read.php in bitweaver CMS 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the comment_title parameter. network bitweaver | 4.3 |
2006-03-10 | CVE-2006-1130 | Input Validation vulnerability in Ekinboard 1.0.3 Cross-site scripting (XSS) vulnerability in EKINboard 1.0.3 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag. network ekinboard | 4.3 |
2006-03-10 | CVE-2006-1129 | Input Validation vulnerability in Ekinboard 1.0.3 SQL injection vulnerability in config.php in EKINboard 1.0.3 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the username cookie. | 7.5 |
2006-03-10 | CVE-2006-0667 | Local Security vulnerability in AIX 5.2/5.3 lscfg in IBM AIX 5.2 and 5.3 allows local users to modify arbitrary files via a symlink attack. | 4.6 |
2006-03-10 | CVE-2006-0040 | Denial Of Service vulnerability in Gnome Evolution 2.4.2.1 GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a text e-mail with a large number of URLs, possibly due to unknown problems in gtkhtml. | 5.0 |