Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-10-26 | CVE-2006-5552 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Revilloc Solutions Revilloc Mailserver Multiple heap-based buffer overflows in RevilloC MailServer 1.21 and earlier allow remote attackers to cause a denial of service (CPU consumption or application crash) or execute arbitrary code via a long argument to the (1) MAIL FROM or (2) RCPT TO command. | 7.5 |
2006-10-26 | CVE-2006-5551 | Remote Buffer Overflow vulnerability in QK SMTP Stack-based buffer overflow in QK SMTP 3.01 and earlier might allow remote attackers to execute arbitrary code via a long argument to the RCPT TO command. | 7.5 |
2006-10-26 | CVE-2006-5548 | Remote File Include vulnerability in Otscms 2.0.0 PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management System (OTSCMS) 2.0.0 through 2.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[config][directories][classes] parameter. | 7.5 |
2006-10-26 | CVE-2006-5547 | Remote File Include vulnerability in Otscms 1.0.0 PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management System (OTSCMS) 1.0.0 through 1.0.3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[config][otscms][directories][includes] parameter. | 7.5 |
2006-10-26 | CVE-2006-5539 | Remote File Include vulnerability in Uber Project Document Management System Secure.PHP PHP remote file inclusion vulnerability in login/secure.php in UeberProject Management System 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cfg[homepath] parameter. | 7.5 |
2006-10-26 | CVE-2006-5531 | Remote File Include vulnerability in Ascended Guestbook Embedded.PHP PHP remote file inclusion vulnerability in embedded.php in Ascended Guestbook 1.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CONFIG[path] parameter. | 7.5 |
2006-10-26 | CVE-2006-5527 | Remote File Include vulnerability in Intelimen Intelieditor 1.2.2.1 PHP remote file inclusion vulnerability in lib.editor.inc.php in Intelimen InteliEditor 1.2.x allows remote attackers to execute arbitrary PHP code via a URL in the sys_path parameter. | 7.5 |
2006-10-26 | CVE-2006-5526 | Remote Security vulnerability in Fully Modded Phpbb Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing, as modified in Fully Modded phpBB (phpbbfm) 2021.4.40 and earlier, allow remote attackers to execute arbitrary PHP code via a URL in the foing_root_path parameter in (a) faq.php, (b) index.php, (c) list.php, (d) login.php, (e) playlist.php, (f) song.php, (g) gen_m3u.php, (h) view_artist.php, (i) view_song.php, (j) flash/set_na.php, (k) flash/initialise.php, (l) flash/get_song.php, (m) includes/common.php, (n) admin/nav.php, (o) admin/main.php, (p) admin/list_artists.php, (q) admin/index.php, (r) admin/genres.php, (s) admin/edit_artist.php, (t) admin/edit_album.php, (u) admin/config.php, and (v) admin/admin_status.php in player/, different vectors than CVE-2006-3045. | 7.5 |
2006-10-26 | CVE-2006-5523 | Remote File Include vulnerability in Ez-Ticket 0.0.1 PHP remote file inclusion vulnerability in common.php in EZ-Ticket 0.0.1 allows remote attackers to execute arbitrary PHP code via a URL in the ezt_root_path parameter. | 7.5 |
2006-10-26 | CVE-2006-5522 | Remote File Include vulnerability in Kawf Main.PHP Multiple PHP remote file inclusion vulnerabilities in Johannes Erdfelt Kawf 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the config parameter in (1) main.php or (2) user/account/main.php. | 7.5 |