Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-07-03 | CVE-2006-3341 | SQL Injection vulnerability in Myads 2.04Jp SQL injection vulnerability in annonces-p-f.php in MyAds module 2.04jp for Xoops allows remote attackers to execute arbitrary SQL commands via the lid parameter. | 7.5 |
| 2006-07-03 | CVE-2006-3335 | Local Unauthorized Access vulnerability in HP-UX Mkdir Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors. | 7.2 |
| 2006-06-30 | CVE-2006-3334 | Buffer Overflow vulnerability in Libpng Graphics Library Chunk Error Processing Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly involving the "chunk_name". | 7.5 |
| 2006-06-30 | CVE-2006-3332 | SQL Injection vulnerability in Zorum SQL injection vulnerability in index.php in Zorum Forum 3.5 allows remote attackers to execute arbitrary SQL commands via the (1) offset, (2) tid, (3) fromid, (4) sortby, (5) fromfrommethod, and (6) fromfromlist parameters. | 7.5 |
| 2006-06-30 | CVE-2006-3329 | Input Validation vulnerability in Deltascripts PHP Classifieds 6.04 SQL injection vulnerability in search.php in PHP/MySQL Classifieds (PHP Classifieds) allows remote attackers to execute arbitrary SQL commands via the rate parameter. | 7.5 |
| 2006-06-30 | CVE-2006-3323 | Cross-Site Scripting vulnerability in Mastersfusion MF Piadas 1.0 PHP remote file inclusion vulnerability in admin/admin.php in MF Piadas 1.0 allows remote attackers to execute arbitrary PHP code via the page parameter. | 7.5 |
| 2006-06-30 | CVE-2006-3117 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability." | 7.6 |
| 2006-06-30 | CVE-2006-2199 | Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents. | 7.6 |
| 2006-06-30 | CVE-2006-2198 | Permissions, Privileges, and Access Controls vulnerability in multiple products OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user. | 7.6 |
| 2006-06-29 | CVE-2006-3315 | Remote File Include vulnerability in RahnemaCo Page.PHP PHP remote file inclusion vulnerability in page.php in an unspecified RahnemaCo.com product, possibly eShop, allows remote attackers to execute arbitrary PHP code via a URL in the osCsid parameter. | 7.5 |