Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-03-02 | CVE-2005-0620 | Local Security vulnerability in Einstein Einstein 1.0 stores credit card information in plaintext in the world-readable wallets.dat file, which allows local users to steal the information. | 2.1 |
2005-03-02 | CVE-2005-0605 | Integer Overflow vulnerability in libXPM Bitmap_unit scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. | 7.5 |
2005-03-01 | CVE-2005-0632 | Remote File Include vulnerability in PHPnews 1.2.3/1.2.4 PHP remote file inclusion vulnerability in auth.php in PHPNews 1.2.4 and possibly 1.2.3, allows remote attackers to execute arbitrary PHP code via the path parameter. | 5.0 |
2005-03-01 | CVE-2005-0631 | Unspecified vulnerability in Pblang delpm.php in PBLang 4.63 allows remote authenticated users to delete arbitrary PM files by modifying the "id" and "a" parameters. | 2.1 |
2005-03-01 | CVE-2005-0630 | Directory Traversal vulnerability in PBLang Bulletin Board System sendpm.php in PBLang 4.63 allows remote authenticated users to read arbitrary files via a full pathname in the orig parameter. | 2.1 |
2005-03-01 | CVE-2005-0629 | Remote HTML Injection vulnerability in 427BB Multiple cross-site scripting (XSS) vulnerabilities in profile.php in 427BB 2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) user or (2) Avatar parameters. network 427bb | 4.3 |
2005-03-01 | CVE-2005-0628 | Remote Input Validation vulnerability in Demof Forumwa V1 Multiple cross-site scripting (XSS) vulnerabilities in Forumwa 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the keyword parameter in search.php or the (2) body or (3) subject of a forum message. network demof | 4.3 |
2005-03-01 | CVE-2005-0623 | Remote Security vulnerability in Raidenhttpd 1.1.32 Buffer overflow in RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to execute arbitrary code via a long URL. | 7.5 |
2005-03-01 | CVE-2005-0622 | Remote Security vulnerability in Raidenhttpd 1.1.32 RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to view the PHP source code via an HTTP GET request for a filename with a trailing (1) . | 5.0 |
2005-03-01 | CVE-2004-1055 | Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) an error message generated by the internal phpMyAdmin parser. | 6.8 |