Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-11-22 | CVE-2005-3750 | Injection vulnerability in Opera Browser Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera. | 7.5 |
2005-11-22 | CVE-2005-3749 | Local Arbitrary Code Execution vulnerability in IBM AIX Diagela.SH Unspecified "absolute path vulnerabilities" in the diagela command (diagela.sh) in IBM AIX 5.2 and 5.3 have unknown impact and attack vectors. | 7.2 |
2005-11-22 | CVE-2005-3748 | SQL Injection vulnerability in Tru-Zone Nukeet 3.0/3.1/3.2 SQL injection vulnerability in the Search module in Tru-Zone Nuke ET 3.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the query parameter. | 7.5 |
2005-11-22 | CVE-2005-3746 | SQL Injection vulnerability in APBoard Thread.PHP SQL injection vulnerability in thread.php in APBoard allows remote attackers to execute arbitrary SQL commands via the start parameter. | 7.5 |
2005-11-22 | CVE-2005-3744 | SQL Injection vulnerability in PHPcomasy 0.7.4 SQL injection vulnerability in index.php in phpComasy 0.7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2005-11-22 | CVE-2005-3743 | SQL Injection vulnerability in SimplePoll Results.PHP SQL injection vulnerability in results.php in SimplePoll allows remote attackers to execute arbitrary SQL commands via the pollid parameter. | 7.5 |
2005-11-22 | CVE-2005-3741 | Unspecified vulnerability in Almondsoft Almond Classifieds Almond Classifieds does not properly verify the password, which allows attackers to bypass access restrictions. | 7.5 |
2005-11-22 | CVE-2005-3740 | SQL Injection vulnerability in PHP-Fusion Options.php and Viewforum.php Multiple SQL injection vulnerabilities in PHP-Fusion 6.00.206 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter to options.php or (2) lastvisited parameter to viewforum.php. | 7.5 |
2005-11-22 | CVE-2005-3735 | SQL Injection vulnerability in e-Quick Cart Multiple SQL injection vulnerabilities in e-Quick Cart allow remote attackers to execute arbitrary SQL commands via the (1) productid parameter in shopaddtocart.asp, (2) strpemail parameter in shopprojectlogin.asp, and (3) id parameter in shoptellafriend.asp. | 7.5 |
2005-11-21 | CVE-2005-3733 | Multiple Unspecified vulnerability in Juniper Networks Routers ISAKMP IKE Traffic The Internet Key Exchange version 1 (IKEv1) implementation in Juniper JUNOS and JUNOSe software for M, T, and J-series routers before release 6.4, and E-series routers before 7-1-0, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.5 |