Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-06-07 | CVE-2005-1969 | Unspecified vulnerability in Pragma Systems Pragma Telnetserver 6.0 Cross-site scripting (XSS) vulnerability in Pragma Systems Telnetserver 6.0 allows remote attackers to inject arbitrary web script or HTML, and hide activities in log files, via a "<!--" (HTML comment) in a session. network pragma-systems | 4.3 |
2005-06-07 | CVE-2005-1961 | Security Bypass vulnerability in Consortium C-Jdbc Unknown vulnerability in ObjectWeb Consortium C-JDBC before 1.3.1 allows local users to bypass intended access restrictions and obtain the cache results from another user. | 4.6 |
2005-06-07 | CVE-2005-1890 | Remote Security vulnerability in Mortiforo Unknown vulnerability in Mortiforo before 0.9.1 allows users to access private forums via unknown attack vectors. | 5.0 |
2005-06-07 | CVE-2005-1889 | Remote Security vulnerability in SUN Java System web Server 6.0/6.1 Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and earlier allows attackers to read files. | 5.0 |
2005-06-06 | CVE-2005-1888 | HTML Injection vulnerability in MediaWiki Page Template Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates. network mediawiki | 4.3 |
2005-06-06 | CVE-2005-1885 | Information Disclosure vulnerability in Yapig 0.92B/0.93U/0.94U view.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to obtain sensitive information via a phid parameter that is not an integer, which reveals the path in an error message. | 5.0 |
2005-06-06 | CVE-2005-1880 | Link Following vulnerability in Everybuddy 0.4.3 everybuddy 0.4.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget. | 5.5 |
2005-06-06 | CVE-2005-1877 | Input Validation vulnerability in Lpanel 1.59 Cross-site scripting (XSS) vulnerability in view_ticket.php in Lpanel 1.59 and earlier allows remote attackers to inject arbitrary web script or HTML and obtain sensitive information via the pid parameter. network lpanel | 4.3 |
2005-06-03 | CVE-2005-1872 | Remote Security vulnerability in IBM Websphere Application Server 5.0 Buffer overflow in the administrative console in IBM WebSphere Application Server 5.x, when the global security option is enabled, allows remote attackers to execute arbitrary code. | 7.5 |
2005-06-03 | CVE-2005-1858 | Local Information Disclosure vulnerability in FUSE FUSE 2.x before 2.3.0 does not properly clear previously used memory from unfilled pages when the filesystem returns a short byte count to a read request, which may allow local users to obtain sensitive information. | 2.1 |