Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-1316 | Cross-Site Scripting vulnerability in Horde Accounts 2.1/2.1.1 Cross-site scripting (XSS) vulnerability in Horde Accounts module before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title. network horde | 4.3 |
2005-05-02 | CVE-2005-1315 | Cross-Site Scripting vulnerability in Turba Cross-site scripting (XSS) vulnerability in Horde Turba module before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title. network horde | 4.3 |
2005-05-02 | CVE-2005-1314 | Cross-Site Scripting vulnerability in Horde Kronolith 1.1.3 Cross-site scripting (XSS) vulnerability in Horde Kronolith module before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title. network horde | 4.3 |
2005-05-02 | CVE-2005-1313 | Cross-Site Scripting vulnerability in Passwd Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title. network horde | 4.3 |
2005-05-02 | CVE-2005-1311 | Cross-Site Scripting vulnerability in Yappa-NG Cross-site scripting (XSS) vulnerability in Yappa-NG before 2.3.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. network yappa-ng | 4.3 |
2005-05-02 | CVE-2005-1309 | Cross-Site Scripting vulnerability in Eaden Mckee Bblog 0.7.4 Cross-site scripting (XSS) vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the (1) entry title field or (2) comment body text. network eaden-mckee | 4.3 |
2005-05-02 | CVE-2005-1305 | Remote Security vulnerability in Hyper.Cgi The hyper.cgi script allows remote attackers to read arbitrary files via a full pathname in the argument. | 5.0 |
2005-05-02 | CVE-2005-1304 | The citat.pl script allows remote attackers to execute arbitrary files via shell metacharacters in the argument. | 7.5 |
2005-05-02 | CVE-2005-1302 | SQL Injection vulnerability in Swsoft Confixx 3.0.6/3.0.8/Pro3 SQL injection vulnerability in Confixx 3.08 and earlier allows remote attackers to execute arbitrary SQL commands via the "change user" field. | 7.5 |
2005-05-02 | CVE-2005-1293 | SQL-Injection vulnerability in Storeportal 2.63 Multiple SQL injection vulnerabilities in default.asp in StorePortal 2.63 allow remote attackers to execute arbitrary SQL commands via the (1) language, (2) bpic, (3) idcategory, (4) content, (5) keyword, or (6) idproduct parameter. | 7.5 |