Vulnerabilities

DATE	CVE	VULNERABILITY TITLE	RISK
2005-05-02	CVE-2005-1237	SQL Injection vulnerability in FlexPHPNews News.PHP SQL injection vulnerability in news.php in FlexPHPNews 0.0.3 allows remote attackers to execute arbitrary SQL commands via the newsid parameter. network low complexity china-on-site	7.5
2005-05-02	CVE-2005-1236	SQL Injection vulnerability in Duware Duportal 3.1.2/3.1.2Sql Multiple SQL injection vulnerabilities in DUware DUportal 3.1.2 and 3.1.2 SQL allow remote attackers to execute arbitrary SQL commands via the (1) iChannel parameter to channel.asp or search.asp, (2) iData parameter to detail.asp or inc_rating.asp, (3) iCat parameter to detail.asp or type.asp, (4) DAT_PARENT parameter to inc_poll_voting.asp, or (5) iRate parameter to inc_rating.asp, a different set of vulnerabilities than CVE-2005-1224. network low complexity duware	7.5
2005-05-02	CVE-2005-1235	Information Disclosure vulnerability in PHPbb Group PHPbb-Auction 1.0M/1.2M auction_my_auctions.php in phpbb-Auction 1.2m and earlier allows remote attackers to obtain sensitive information via an invalid mode parameter, which leaks the full path in a PHP error message. network low complexity phpbb-group	5.0
2005-05-02	CVE-2005-1234	SQL Injection vulnerability in PHPbb Group PHPbb-Auction 1.0M/1.2M Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to auction_rating.php or (2) ar parameter to action_offer.php. network low complexity phpbb-group	5.0
2005-05-02	CVE-2005-1232	Remote Security vulnerability in SUN Java System web Proxy Server 3.6 Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote attackers to execute arbitrary code via unknown vectors. network low complexity sun	7.5
2005-05-02	CVE-2005-1231	HTML Injection vulnerability in Jaws 0.3/0.4/0.5Beta2 Cross-site scripting (XSS) vulnerability in the NewTerm function in GlossaryModel.php in JAWS 0.4 allows remote attackers to inject arbitrary web script or HTML via the (1) term or (2) description. network jaws	4.3
2005-05-02	CVE-2005-1230	Directory Traversal vulnerability in Magnus Lundvall Yawcam 0.2.5 Directory traversal vulnerability in Yawcam 0.2.5 allows remote attackers to read arbitrary files via "..\" (dot dot backslash) sequences in a GET request. network low complexity magnus-lundvall	5.0
2005-05-02	CVE-2005-1229	Directory Traversal vulnerability in CPIO Filename Directory traversal vulnerability in cpio 2.6 and earlier allows remote attackers to write to arbitrary directories via a .. local low complexity gnu	4.6
2005-05-02	CVE-2005-1228	Multiple Security vulnerability in Apple Mac OS X Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. network low complexity gnu	5.0
2005-05-02	CVE-2005-1226	Information Disclosure vulnerability in Coppermine Photo Gallery 1.3.2 Coppermine Photo Gallery 1.3.2 stores passwords in plaintext, which allows remote attackers to obtain sensitive information. network low complexity coppermine	7.5

Vulnerabilities {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities"}]}

Vulnerabilities