Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-07 | CVE-2005-4058 | SQL Injection vulnerability in Saralblog 1/1Beta SQL injection vulnerability in saralblog 1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to viewprofile.php. | 7.5 |
2005-12-07 | CVE-2005-4057 | Unspecified vulnerability in Jonathan Beckett Pluggedout Nexus 0.1 Cross-site scripting (XSS) vulnerability in search.php in PluggedOut Nexus 0.1 allows remote attackers to inject arbitrary web script or HTML via the (1) Location, (2) Last Name, and (3) First Name parameters. network jonathan-beckett | 4.3 |
2005-12-07 | CVE-2005-4056 | Unspecified vulnerability in Jonathan Beckett Pluggedout Nexus 0.1 SQL injection vulnerability in search.php in PluggedOut Nexus 0.1 allows remote attackers to execute arbitrary SQL commands via the (1) Location, (2) Last Name, and (3) First Name parameters. | 7.5 |
2005-12-07 | CVE-2005-4055 | SQL Injection vulnerability in Cars Portal SQL injection vulnerability in index.php in Cars Portal 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) page and (2) car parameters. | 7.5 |
2005-12-07 | CVE-2005-4054 | SQL Injection vulnerability in Pluggedout Blog 1.9.5 SQL injection vulnerability in index.php in PluggedOut Blog 1.9.5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categoryid, (2) entryid, (3) year, (4) month, and (5) day parameter. | 7.5 |
2005-12-07 | CVE-2005-4053 | Cross-Site Scripting vulnerability in Cowiki 0.3.4 Cross-site scripting (XSS) vulnerability in coWiki 0.3.4 allows remote attackers to inject arbitrary web script or HTML via the q parameter, as demonstrated using 26.html. network cowiki | 4.3 |
2005-12-07 | CVE-2005-4052 | Remote Security vulnerability in e107 e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. | 5.0 |
2005-12-07 | CVE-2005-4051 | Unspecified vulnerability in E107 0.6174 e107 0.6174 allows remote attackers to vote multiple times for a download via repeated requests to rate.php. | 5.0 |
2005-12-07 | CVE-2005-4050 | Remote Buffer Overflow vulnerability in MultiTech MultiVOIP INVITE Buffer overflow in multiple Multi-Tech Systems MultiVOIP devices with firmware before x.08 allows remote attackers to execute arbitrary code via a long INVITE field in a Session Initiation Protocol (SIP) packet. | 7.5 |
2005-12-07 | CVE-2005-4049 | Unspecified vulnerability in Netart Media Blog System 1.2 Multiple SQL injection vulnerabilities in Blog System 1.2 allow remote attackers to execute arbitrary SQL commands via (1) the cat parameter in index.php and (2) the note parameter in blog.php. | 7.5 |