Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-02-21 | CVE-2006-0831 | Remote Security vulnerability in Tasarim Rehberi PHP remote file include vulnerability in index.php in Tasarim Rehberi allows remote attackers to execute arbitrary PHP code via a URL in the (1) sayfaadi or (2) sayfa parameter. | 7.5 |
| 2006-02-21 | CVE-2006-0830 | Unspecified vulnerability in Microsoft Internet Explorer 6.0.2900 The scripting engine in Internet Explorer allows remote attackers to cause a denial of service (resource consumption) and possibly execute arbitrary code via a web page that contains a recurrent call to an infinite loop in Javascript or VBscript, which consumes the stack, as demonstrated by resetting the "location" variable within the loop. | 7.5 |
| 2006-02-21 | CVE-2006-0829 | HTML Injection vulnerability in E-Blah Platinum 9.7 Cross-site scripting vulnerability in E-Blah Platinum 9.7 allows remote attackers to inject arbitrary web script or HTML via the referer (HTTP_REFERER), which is not sanitized when the log file is viewed by the administrator using "Click Log". | 5.0 |
| 2006-02-21 | CVE-2006-0828 | Remote Security vulnerability in Workcentre 238 Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to "reduce effectiveness of security features" via unknown attack vectors. | 5.0 |
| 2006-02-21 | CVE-2006-0827 | HTML Injection vulnerability in Xerox WorkCentre Products Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. | 5.0 |
| 2006-02-21 | CVE-2006-0826 | Denial of Service vulnerability in Xerox WorkCentre Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to cause a denial of service via a crafted Postscript request. | 5.0 |
| 2006-02-21 | CVE-2006-0825 | Local Authentication Bypass vulnerability in Xerox WorkCentre Products Multiple unspecified vulnerabilities in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allow remote attackers to bypass authentication or gain "unauthorized network access" via unknown attack vectors. | 7.5 |
| 2006-02-21 | CVE-2006-0824 | Input Validation vulnerability in Geeklog Multiple unspecified vulnerabilities in lib-common.php in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to include arbitrary local files and execute arbitrary code via (1) absolute paths in unspecified parameters and (2) the language cookie, as demonstrated for code execution using error.log. | 7.5 |
| 2006-02-21 | CVE-2006-0823 | Input Validation vulnerability in Geeklog Multiple SQL injection vulnerabilities in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to inject arbitrary SQL commands via the (1) userid variable to users.php or (2) sessid variable to lib-sessions.php. | 7.5 |
| 2006-02-21 | CVE-2006-0822 | Remote Denial Of Service vulnerability in EmuLinker Malformed Packet Unspecified vulnerability in EmuLinker Kaillera Server before 0.99.17 allows remote attackers to cause a denial of service (probably resource consumption) via a crafted packet that causes a "ghost game" to be left on the server. | 5.0 |