Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-29 | CVE-2006-5085 | Remote Command Execution vulnerability in Pixel Motion Pixel Motion Blog 2.1.1 Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the nom_blog parameter, which is injected into include/variables.php. | 7.5 |
| 2006-09-29 | CVE-2006-5084 | Improper Input Validation vulnerability in Skype Technologies Skype Format string vulnerability in the NSRunAlertPanel function in eBay Skype for Mac 1.5.*.79 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed Skype URL, as originally reported to involve a null dereference. | 7.5 |
| 2006-09-29 | CVE-2006-5083 | Remote Security vulnerability in Importal PHP remote file inclusion vulnerability in includes/functions_portal.php in Integrated MODs (IM) Portal 1.2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |
| 2006-09-29 | CVE-2006-5082 | Arbitrary Command Execution vulnerability in Sugar Suite Unspecified vulnerability in Sugar Suite Open Source (SugarCRM) before 4.2.1 Patch C (20060917) has unspecified impact, related to code execution, and unspecified attack vectors. | 7.5 |
| 2006-09-29 | CVE-2006-5081 | Unspecified vulnerability in JL Webworks Quickblogger 1.4 PHP remote file inclusion vulnerability in acc.php in QuickBlogger (QB) 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. | 7.5 |
| 2006-09-29 | CVE-2006-5079 | Remote File Include vulnerability in PABugs Class.MySQL.PHP PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path_to_bt_dir parameter. | 7.5 |
| 2006-09-29 | CVE-2006-5078 | Remote File Include vulnerability in Polaring 00.04.03 PHP remote file inclusion vulnerability in view/general.php in Kristian Niemi Polaring 00.04.03 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _SESSION[dirMain] parameter. | 7.5 |
| 2006-09-29 | CVE-2006-5076 | Remote File Include vulnerability in Back-End CMS 0.4.5 Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter in (1) admin/index.php, (2) Facts.php, or (3) search.php. | 7.5 |
| 2006-09-29 | CVE-2006-5075 | Remote Denial of Service vulnerability in SUN Solaris 10.0 The Kernel SSL Proxy service (svc:/network/ssl/proxy) in Sun Solaris 10 before 20060926 allows remote attackers to cause a denial of service (system crash) via unspecified vectors related to an SSL client. | 7.8 |
| 2006-09-29 | CVE-2006-5073 | Remote Denial of Service vulnerability in Sun Solaris Malformed IPv6 Packets Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote attackers to cause a denial of service (panic) via crafted IPv6 packets, a different vulnerability than CVE-2006-5013. | 7.8 |