Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2005-12-20 CVE-2005-4419 Input Validation vulnerability in Quick Square Development Honeycomb Archive
Multiple SQL injection vulnerabilities in CategoryResults.cfm in Honeycomb Archive and Honeycomb Archive Enterprise 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) series, (2) cat_parent, (3) cat, and (4) div parameters.
network
low complexity
quicksquare-development
7.5
7.5
2005-12-20 CVE-2005-4416 Input Validation vulnerability in TML 0.5
SQL injection vulnerability in index.php in TML CMS 0.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
tml
7.5
7.5
2005-12-20 CVE-2005-4411 Remote Mailbox Name Service Buffer Overflow vulnerability in David Harris Mercury Mail Transport System 4.01B
Buffer overflow in Mercury Mail Transport System 4.01b allows remote attackers to execute arbitrary code via a long request to TCP port 105.
network
low complexity
david-harris
7.5
7.5
2005-12-20 CVE-2005-4408 SQL Injection vulnerability in Miraserver
Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) page parameter to index.php, (2) id parameter to newsitem.php, and (3) cat parameter to article.php.
network
low complexity
pc-media
7.5
7.5
2005-12-20 CVE-2005-4406 Input Validation vulnerability in Mercury CMS
SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter.
network
low complexity
tmc-visionpool
7.5
7.5
2005-12-20 CVE-2005-4404 SQL-Injection vulnerability in Media2 Cms Shop
SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter.
network
low complexity
media2-cms
7.5
7.5
2005-12-20 CVE-2005-4403 SQL Injection vulnerability in Marwel
SQL injection vulnerability in index.php in Marwel 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the show parameter.
network
low complexity
qcm
7.5
7.5
2005-12-20 CVE-2005-4397 SQL-Injection vulnerability in Icms
SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter.
network
low complexity
icms-content-management-systems
7.5
7.5
2005-12-20 CVE-2005-4392 Input Validation vulnerability in E-Publish
SQL injection vulnerability in printer_friendly.cfm in e-publish CMS 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
e-publish
7.5
7.5
2005-12-20 CVE-2005-4390 SQL Injection vulnerability in ContentServ
SQL injection vulnerability in index.php in ContentServ 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the StoryID parameter.
network
low complexity
contentserv
7.5
7.5