Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-11-22 | CVE-2005-3752 | Remote Security vulnerability in Ldapdiff Unspecified vulnerability in ldapdiff before 1.1.1 has unknown impact and attack vectors, related to "ldapdiff.conf path construction". | 10.0 |
2005-11-22 | CVE-2005-3751 | Cross-Site Scripting vulnerability in Pound HTTP request smuggling vulnerability in Pound before 1.9.4 allows remote attackers to poison web caches, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with conflicting Content-length and Transfer-encoding headers. network apsis | 4.3 |
2005-11-22 | CVE-2005-3750 | Injection vulnerability in Opera Browser Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera. | 7.5 |
2005-11-22 | CVE-2005-3749 | Local Arbitrary Code Execution vulnerability in IBM AIX Diagela.SH Unspecified "absolute path vulnerabilities" in the diagela command (diagela.sh) in IBM AIX 5.2 and 5.3 have unknown impact and attack vectors. | 7.2 |
2005-11-22 | CVE-2005-3748 | SQL Injection vulnerability in Tru-Zone Nukeet 3.0/3.1/3.2 SQL injection vulnerability in the Search module in Tru-Zone Nuke ET 3.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the query parameter. | 7.5 |
2005-11-22 | CVE-2005-3747 | Information Exposure vulnerability in Mortbay Jetty Unspecified vulnerability in Jetty before 5.1.6 allows remote attackers to obtain source code of JSP pages, possibly involving requests for .jsp files with URL-encoded backslash ("%5C") characters. | 5.0 |
2005-11-22 | CVE-2005-3746 | SQL Injection vulnerability in APBoard Thread.PHP SQL injection vulnerability in thread.php in APBoard allows remote attackers to execute arbitrary SQL commands via the start parameter. | 7.5 |
2005-11-22 | CVE-2005-3744 | SQL Injection vulnerability in PHPcomasy 0.7.4 SQL injection vulnerability in index.php in phpComasy 0.7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2005-11-22 | CVE-2005-3743 | SQL Injection vulnerability in SimplePoll Results.PHP SQL injection vulnerability in results.php in SimplePoll allows remote attackers to execute arbitrary SQL commands via the pollid parameter. | 7.5 |
2005-11-22 | CVE-2005-3742 | Cross-Site Scripting vulnerability in Advanced Poll Advanced Poll 2.0.2 Cross-site scripting (XSS) vulnerability in popup.php in Advanced Poll 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the poll_ident parameter. network advanced-poll | 4.3 |