Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-10-18 | CVE-2006-5333 | Multiple vulnerability in Oracle Database Server 10.2.0.2 Unspecified vulnerability in Oracle Spatial component in Oracle Database 10.2.0.2 has unknown impact and remote authenticated attack vectors related to "create session" privileges, aka Vuln# DB02. | 7.1 |
2006-10-17 | CVE-2006-5326 | Remote Security vulnerability in French Language Pack PHP remote file inclusion vulnerability in language/lang/lang_contact_faq.php in the Prillian French 0.8.0 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |
2006-10-17 | CVE-2006-5325 | Remote Security vulnerability in Security Suite Ip Logger Multiple PHP remote file inclusion vulnerabilities in Dimitri Seitz Security Suite IP Logger in dwingmods for phpBB allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter in (1) mkb.php, (2) iplogger.php, (3) admin_board2.php, or (4) admin_logger.php in includes/, different vectors than CVE-2006-5224. | 7.5 |
2006-10-17 | CVE-2006-5324 | Remote Security vulnerability in Websphere Application Server The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6.1.0.2 allows attackers to obtain unspecified access without supplying a username and password, aka PK28374. | 7.5 |
2006-10-17 | CVE-2006-5322 | SQL-Injection vulnerability in PHPlist Multiple SQL injection vulnerabilities in phplist before 2.10.3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
2006-10-17 | CVE-2006-5318 | Remote File Include vulnerability in Jasmine-Web PHP remote file inclusion vulnerability in index.php in Nayco JASmine (aka Jasmine-Web) allows remote attackers to execute arbitrary PHP code via an FTP URL in the section parameter. | 7.5 |
2006-10-17 | CVE-2006-5317 | Remote File Include vulnerability in Eboli PHP remote file inclusion vulnerability in index.php in eboli allows remote attackers to execute arbitrary PHP code via a URL in the contentSpecial parameter. | 7.5 |
2006-10-17 | CVE-2006-5316 | Information Disclosure vulnerability in PHPlibre Registrotl 0.1B/0.5B registroTL stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for /usuarios.dat. | 7.8 |
2006-10-17 | CVE-2006-5315 | Remote File Include vulnerability in PHPlibre Registrotl 0.1B/0.5B PHP remote file inclusion vulnerability in main.php in registroTL allows remote attackers to execute arbitrary PHP code via an ftp:// URL in the page parameter. | 7.5 |
2006-10-17 | CVE-2006-5314 | Remote File Include vulnerability in PHPlibre Tribunalibre 3.12Beta PHP remote file inclusion vulnerability in ftag.php in TribunaLibre 3.12 Beta allows remote attackers to execute arbitrary PHP code via a URL in the mostrar parameter. | 7.5 |