Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-09-27 | CVE-2005-3075 | SQL-Injection vulnerability in Zengaia SQL injection vulnerability in Zengaia before 0.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |
2005-09-27 | CVE-2005-3074 | SQL-Injection vulnerability in Rsyslogd SQL injection vulnerability in rsyslogd in RSyslog before 1.0.1 and before 1.10.1 allows remote attackers to execute arbitrary SQL commands via crafted syslog messages. | 7.5 |
2005-09-27 | CVE-2005-3072 | Multiple vulnerability in Interchange SQL injection vulnerability in pages/forum/submit.html in Interchange 4.9.3 up to 5.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |
2005-09-27 | CVE-2005-3063 | SQL Injection vulnerability in UNU Networks Mailgust 1.9 SQL injection vulnerability in MailGust 1.9 allows remote attackers to execute arbitrary SQL commands via the email field on the password reminder page. | 7.5 |
2005-09-27 | CVE-2005-3062 | Remote File Include vulnerability in Alstrasoft E-Friends 4.0 PHP remote file inclusion vulnerability in index.php in AlstraSoft E-Friends 4.0 allows remote attackers to execute arbitrary PHP code via the mode parameter. | 7.5 |
2005-09-27 | CVE-2005-3061 | Buffer Overflow vulnerability in PowerArchiver Long Filename Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive. | 7.5 |
2005-09-24 | CVE-2005-3052 | SQL-Injection vulnerability in jportal SQL injection vulnerability in module/down.inc.php in jportal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the search field to download.php. | 7.5 |
2005-09-24 | CVE-2005-3045 | SQL Injection vulnerability in MY Little Homepage MY Little Forum 1.3/1.5 SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote attackers to execute arbitrary SQL commands via the phrase field. | 7.5 |
2005-09-23 | CVE-2005-2705 | Integer Overflow vulnerability in Mozilla Browser/Firefox JavaScript Engine Integer overflow in the JavaScript engine in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 might allow remote attackers to execute arbitrary code. | 7.5 |
2005-09-23 | CVE-2005-2702 | Unspecified vulnerability in Mozilla Firefox and Mozilla Suite Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters. | 7.5 |