Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-2247 | Remote Security vulnerability in Goosequill Audienceconnect 1.0.Beta.20 Unknown vulnerability in the "admin of paypal email addresses" in AudienceConnect before 1.0.beta.21 has unknown impact and attack vectors. | 10.0 |
2004-12-31 | CVE-2004-2246 | Cross-Site Scripting vulnerability in Goollery 0.3 Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php. network goollery | 4.3 |
2004-12-31 | CVE-2004-2245 | Cross-Site Scripting vulnerability in Goollery 0.3 Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows remote attackers to inject arbitrary HTML or web script via the (1) page parameter to viewalbum.php or (2) btopage parameter to viewpic.php. network goollery | 4.3 |
2004-12-31 | CVE-2004-2244 | Denial Of Service vulnerability in Oracle Application Server and Oracle9I The XML parser in Oracle 9i Application Server Release 2 9.0.3.0 and 9.0.3.1, 9.0.2.3 and earlier, and Release 1 1.0.2.2 and 1.0.2.2.2, and Database Server Release 2 9.2.0.1 and later, allows remote attackers to cause a denial of service (CPU and memory consumption) via a SOAP message containing a crafted DTD. | 5.0 |
2004-12-31 | CVE-2004-2243 | Remote Security vulnerability in Phorum 4.3.7 Phorum allows remote attackers to hijack sessions of other users by stealing and replaying the session hash in the phorum_uriauth parameter, as demonstrated using profile.php. | 7.5 |
2004-12-31 | CVE-2004-2242 | Cross-Site Scripting vulnerability in Phorum 5.0.7Beta Cross-site scripting (XSS) vulnerability in search.php in Phorum, possibly 5.0.7 beta and earlier, allows remote attackers to inject arbitrary HTML or web script via the subject parameter. network phorum | 4.3 |
2004-12-31 | CVE-2004-2241 | Cross-Site Scripting and SQL Injection vulnerability in Phorum 5.0.11 Cross-site scripting (XSS) vulnerability in Phorum 5.0.11 and earlier allows remote attackers to inject arbitrary HTML or web script via search.php. network phorum | 4.3 |
2004-12-31 | CVE-2004-2240 | Cross-Site Scripting and SQL Injection vulnerability in Phorum 5.0.11 Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier allow remote attackers to modify SQL statements via (1) the query string in read.php or (2) unknown vectors in file.php. | 7.5 |
2004-12-31 | CVE-2004-2239 | Multiple vulnerability in Inter7 Vpopmail Vsybase.c Buffer overflow in vsybase.c in vpopmail 5.4.2 and earlier might allow attackers to cause a denial of service or execute arbitrary code. | 7.5 |
2004-12-31 | CVE-2004-2237 | Unspecified vulnerability in Moodle Unknown vulnerability in Moodle before 1.3.4 has unknown impact and attack vectors, related to "strings in Moodle texts." | 10.0 |