Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-03 | CVE-2005-1424 | Local Information Disclosure vulnerability in Stumbleinside Gotext 1.01 StumbleInside GoText 1.01 stores sensitive username, mail address,and phone number information in plaintext in the GoText.bin file, which allows local users to obtain that information. | 2.1 |
2005-05-03 | CVE-2005-1423 | Denial-Of-Service vulnerability in Software602 602Lan Suite 2004.0.05.0413 Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote attackers to cause a denial of service and determine the presence of arbitrary files via .. | 6.4 |
2005-05-03 | CVE-2005-1422 | Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to conduct administrator operations and cause a denial of service (server or camera shutdown) via a direct request to admin.html. | 7.5 |
2005-05-03 | CVE-2005-1421 | Directory Traversal vulnerability in Raysoft Video CAM Server 1.0.0Beta Directory traversal vulnerability in Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to read arbitrary files via ".." (dot dot) sequences in an HTTP request. | 5.0 |
2005-05-03 | CVE-2005-1420 | Remote Security vulnerability in Raysoft Video CAM Server 1.0.0Beta Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to determine the full pathname of the server via a request for an invalid page, as demonstrated using "%20" (hex-encoded space). | 5.0 |
2005-05-03 | CVE-2005-1419 | SQL-Injection vulnerability in Ocean12 Technologies Mailing List Manager 1.06 SQL injection vulnerability in the admin login panel for Ocean12 Mailing List Manager 1.06 allows remote attackers to execute arbitrary SQL commands via the Admin_id parameter. | 7.5 |
2005-05-03 | CVE-2005-1418 | Local Information Disclosure vulnerability in Netleaf Limited Notjustbrowsing 1.0.3 NetLeaf Limited NotJustBrowsing 1.0.3 stores the View Lock Password in plaintext in the notjustbrowsing.prf file, which allows local users to gain privileges. | 4.6 |
2005-05-03 | CVE-2005-1417 | SQL Injection vulnerability in MaxWebPortal Multiple SQL injection vulnerabilities in MaxWebPortal 2.x, 1.35, and other versions allow remote attackers to execute arbitrary SQL commands via (1) article_popular.asp, (2) arguments to dl_popular.asp, (3) arguments to links_popular.asp, (4) arguments to pic_popular.asp, (5) article_rate.asp, (6) dl_rate.asp, (7) links_rate.asp, (8) pic_rates.asp, (9) article_toprated.asp, (10) dl_toprated.asp, (11) links_toprated.asp, (12) arguments to pic_toprated.asp, or (13) the TOPIC_ID or Forum_ID parameters to custom_link.asp. | 7.5 |
2005-05-03 | CVE-2005-1416 | Unspecified vulnerability in Soft3304 04Webserver 1.81 Directory traversal vulnerability in 04WebServer 1.81 allows remote attackers to read files outside of the web root but within the installation folder. | 5.0 |
2005-05-03 | CVE-2005-1415 | Remote Buffer Overflow vulnerability in GlobalSCAPE Secure FTP Server 3.0/3.0.2 Buffer overflow in GlobalSCAPE Secure FTP Server 3.0.2 allows remote authenticated users to execute arbitrary code via a long FTP command. | 10.0 |