Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-0387 | Unspecified vulnerability in Remstats remstats 1.0.13 and earlier, when processing uptime data, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. | 2.1 |
2005-05-02 | CVE-2005-0386 | Unspecified vulnerability in Mailreader.Com Cross-site scripting (XSS) vulnerability in network.cgi in mailreader before 2.3.29 earlier allows remote attackers to inject arbitrary web script or HTML via MIME text/enriched or text/richtext messages. network mailreader-com | 4.3 |
2005-05-02 | CVE-2005-0383 | Remote Security vulnerability in Trend Micro Control Manager 3.0Enterprise Trend Micro Control Manager 3.0 Enterprise Edition allows remote attackers to gain privileges via a replay attack of the encrypted username and password. | 7.5 |
2005-05-02 | CVE-2005-0382 | Remote Denial of Service vulnerability in Breed Patch1 Breed patch 1 and earlier allows remote attackers to cause a denial of service (application crash) via an empty UDP packet, which triggers a null dereference. | 5.0 |
2005-05-02 | CVE-2005-0380 | Remote File Include vulnerability in Zeroboard DIR Parameter Multiple PHP remote file inclusion vulnerabilities in (1) print_category.php, (2) login.php, (3) setup.php, (4) ask_password.php, or (5) error.php in ZeroBoard 4.1pl5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the dir parameter to reference a URL on a remote web server that contains the code. | 7.5 |
2005-05-02 | CVE-2005-0379 | File Disclosure vulnerability in Zeroboard Multiple directory traversal vulnerabilities in ZeroBoard 4.1pl5 and earlier allow remote attackers to read arbitrary files via a .. | 5.0 |
2005-05-02 | CVE-2005-0378 | Cross-Site Scripting vulnerability in Horde 3.0 Multiple cross-site scripting (XSS) vulnerabilities in Horde 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) group parameter to prefs.php or (2) url parameter to index.php. network horde | 4.3 |
2005-05-02 | CVE-2005-0377 | SQL Injection vulnerability in Sergey Kiselev Sgallery 1.01 SQL injection vulnerability in imageview.php for SGallery 1.01 allows remote attackers to execute arbitrary SQL commands via the (1) idalbum or (2) idimage parameters. | 7.5 |
2005-05-02 | CVE-2005-0375 | Information Disclosure vulnerability in Sergey Kiselev Sgallery 1.01 imageview.php in SGallery 1.01 allows remote attackers to obtain sensitive information via an HTTP request with (1) idalbum and (2) idimage unset, which reveals the installation path in an error message for the sql_fetch_row function. | 5.0 |
2005-05-02 | CVE-2005-0374 | Unspecified vulnerability in Bitshifters Bitboard 2.0/2.5 Cross-site scripting (XSS) vulnerability in Bitboard 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via an [img] bbcode image tag with an event such as mouseover. network bitshifters | 4.3 |