Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-20 | CVE-2005-4419 | Input Validation vulnerability in Quick Square Development Honeycomb Archive Multiple SQL injection vulnerabilities in CategoryResults.cfm in Honeycomb Archive and Honeycomb Archive Enterprise 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) series, (2) cat_parent, (3) cat, and (4) div parameters. | 7.5 |
2005-12-20 | CVE-2005-4416 | Input Validation vulnerability in TML 0.5 SQL injection vulnerability in index.php in TML CMS 0.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2005-12-20 | CVE-2005-4411 | Remote Mailbox Name Service Buffer Overflow vulnerability in David Harris Mercury Mail Transport System 4.01B Buffer overflow in Mercury Mail Transport System 4.01b allows remote attackers to execute arbitrary code via a long request to TCP port 105. | 7.5 |
2005-12-20 | CVE-2005-4408 | SQL Injection vulnerability in Miraserver Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) page parameter to index.php, (2) id parameter to newsitem.php, and (3) cat parameter to article.php. | 7.5 |
2005-12-20 | CVE-2005-4406 | Input Validation vulnerability in Mercury CMS SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter. | 7.5 |
2005-12-20 | CVE-2005-4404 | SQL-Injection vulnerability in Media2 Cms Shop SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. | 7.5 |
2005-12-20 | CVE-2005-4403 | SQL Injection vulnerability in Marwel SQL injection vulnerability in index.php in Marwel 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the show parameter. | 7.5 |
2005-12-20 | CVE-2005-4397 | SQL-Injection vulnerability in Icms SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter. | 7.5 |
2005-12-20 | CVE-2005-4392 | Input Validation vulnerability in E-Publish SQL injection vulnerability in printer_friendly.cfm in e-publish CMS 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2005-12-20 | CVE-2005-4390 | SQL Injection vulnerability in ContentServ SQL injection vulnerability in index.php in ContentServ 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the StoryID parameter. | 7.5 |