Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-03-09 | CVE-2006-1100 | Remote vulnerability in Sauerbraten Cube and Sauerbraten Buffer overflow in the sgetstr function in shared/cube.h in Sauerbraten 2006_02_28 and earlier, as derived from the Cube engine, allows remote attackers to execute arbitrary code via long streams of input data. | 7.5 |
2006-03-09 | CVE-2006-1099 | Remote File Include vulnerability in Logit 1.3/1.4 PHP remote file include vulnerability in logIT 1.3 and 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the pg parameter. | 7.5 |
2006-03-09 | CVE-2006-1095 | Path Traversal vulnerability in Apache MOD Python 3.2.7 Directory traversal vulnerability in the FileSession object in Mod_python module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie. | 7.2 |
2006-03-09 | CVE-2006-1094 | SQL Injection vulnerability in Woltlab Burning Board SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php. | 7.5 |
2006-03-09 | CVE-2006-1091 | Denial Of Service vulnerability in Kaspersky Anti-Virus 5.0.5/5.5.3 Kaspersky Antivirus 5.0.5 and 5.5.3 allows remote attackers to cause a denial of service (CPU and memory consumption) via unknown attack vectors. | 7.8 |
2006-03-09 | CVE-2006-1090 | Denial-Of-Service vulnerability in Punbb 1.2.10 register.php in PunBB 1.2.10 allows remote attackers to cause an unspecified denial of service via a flood of new user registrations. | 7.8 |
2006-03-09 | CVE-2006-1084 | Input Validation and Information Disclosure vulnerability in PHP-Stats Multiple SQL injection vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the option[prefix] parameter in admin.php and other unspecified PHP scripts, and (2) the PC_REMOTE_ADDR HTTP header to click.php. | 7.5 |
2006-03-09 | CVE-2006-1083 | Input Validation and Information Disclosure vulnerability in PHP-Stats Multiple directory traversal vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to read and possibly execute arbitrary files via a .. | 7.5 |
2006-03-09 | CVE-2006-1081 | SQL Injection vulnerability in Jonathan Beckett Pluggedout Nexus 0.1 SQL injection vulnerability in forgotten_password.php in Jonathan Beckett PluggedOut Nexus 0.1 allows remote attackers to execute arbitrary SQL commands via the email parameter. | 7.5 |
2006-03-09 | CVE-2006-1076 | SQL Injection vulnerability in Invision Power Services Invision Power Board 2.1.5 SQL injection vulnerability in index.php, possibly during a showtopic operation, in Invision Power Board (IPB) 2.1.5 allows remote attackers to execute arbitrary SQL commands via the st parameter. | 7.5 |