Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-10-27 | CVE-2006-5590 | Remote File Include vulnerability in ArticleBeach Script PHP remote file inclusion vulnerability in index.php in ArticleBeach Script 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. | 7.5 |
2006-10-27 | CVE-2006-5589 | SQL Injection vulnerability in Ledgersmb 1.0.0 Multiple SQL injection vulnerabilities in LedgerSMB (LSMB) 1.1.0 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors in (1) OE.pm, (2) AM.pm, and (3) Form.pm. | 7.5 |
2006-10-27 | CVE-2006-5588 | Remote File Include vulnerability in CMS Faethon Mainpath Parameter Multiple PHP remote file inclusion vulnerabilities in CMS Faethon 2.0 Ultimate and earlier, when register_globals and magic_quotes_gpc are enabled, allow remote attackers to execute arbitrary PHP code via a URL in the mainpath parameter to (1) includes/rss-reader.php or (2) admin/config.php, different vectors than CVE-2006-3185. | 7.5 |
2006-10-27 | CVE-2006-5587 | Remote File Include vulnerability in MDWeb Multiple PHP remote file inclusion vulnerabilities in MDweb 1.3 and earlier (Mdweb132-postgres) allow remote attackers to execute arbitrary PHP code via a URL in the chemin_appli parameter in (1) admin/inc/organisations/form_org.inc.php and (2) admin/inc/organisations/country_insert.php. | 7.5 |
2006-10-27 | CVE-2006-5571 | Buffer Overflow vulnerability in Kynoslogic Cruiseworks 1.09C/1.09D Stack-based buffer overflow in /scripts/cruise/cws.exe in CruiseWorks 1.09c and 1.09d allows remote attackers to execute arbitrary code via a long string in the doc parameter. | 7.5 |
2006-10-27 | CVE-2006-5562 | Remote File Include vulnerability in Open Source Technology Group Sourceforge 1.0.4 PHP remote file inclusion vulnerability in include/database.php in SourceForge (aka alexandria) 1.0.4 allows remote attackers to execute arbitrary PHP code via the sys_dbtype parameter. | 7.5 |
2006-10-27 | CVE-2006-5561 | SQL Injection vulnerability in Discuz GBK 5.0.0 SQL injection vulnerability in admincp.php in Discuz! GBK 5.0.0 allows remote attackers to execute arbitrary SQL commands via the cdb_auth cookie. | 7.5 |
2006-10-26 | CVE-2006-5555 | Remote Code Execution vulnerability in Epnadmin 0.7/0.7.1 PHP remote file inclusion vulnerability in constantes.inc.php in EPNadmin 0.7 and 0.7.1 allows remote attackers to execute arbitrary PHP code via the langage parameter. | 7.5 |
2006-10-26 | CVE-2006-5554 | Remote File Include vulnerability in ImageView Directory traversal vulnerability in index.php in Imageview 5 allows remote attackers to read or execute arbitrary local files via a .. | 7.5 |
2006-10-26 | CVE-2006-5553 | Remote Port Scan Denial of Service vulnerability in Cisco products Cisco Security Agent (CSA) for Linux 4.5 before 4.5.1.657 and 5.0 before 5.0.0.193, as used by Unified CallManager (CUCM) and Unified Presence Server (CUPS), allows remote attackers to cause a denial of service (resource consumption) via a port scan with certain options. | 7.8 |