Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2005-09-27 CVE-2005-3075 SQL-Injection vulnerability in Zengaia
SQL injection vulnerability in Zengaia before 0.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
network
low complexity
mpc-donkey
7.5
7.5
2005-09-27 CVE-2005-3074 SQL-Injection vulnerability in Rsyslogd
SQL injection vulnerability in rsyslogd in RSyslog before 1.0.1 and before 1.10.1 allows remote attackers to execute arbitrary SQL commands via crafted syslog messages.
network
low complexity
rsyslog
7.5
7.5
2005-09-27 CVE-2005-3072 Multiple vulnerability in Interchange
SQL injection vulnerability in pages/forum/submit.html in Interchange 4.9.3 up to 5.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
network
low complexity
interchange-development-group
7.5
7.5
2005-09-27 CVE-2005-3063 SQL Injection vulnerability in UNU Networks Mailgust 1.9
SQL injection vulnerability in MailGust 1.9 allows remote attackers to execute arbitrary SQL commands via the email field on the password reminder page.
network
low complexity
unu-networks
7.5
7.5
2005-09-27 CVE-2005-3062 Remote File Include vulnerability in Alstrasoft E-Friends 4.0
PHP remote file inclusion vulnerability in index.php in AlstraSoft E-Friends 4.0 allows remote attackers to execute arbitrary PHP code via the mode parameter.
network
low complexity
alstrasoft
7.5
7.5
2005-09-27 CVE-2005-3061 Buffer Overflow vulnerability in PowerArchiver Long Filename
Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.
network
low complexity
powerarchiver
7.5
7.5
2005-09-24 CVE-2005-3052 SQL-Injection vulnerability in jportal
SQL injection vulnerability in module/down.inc.php in jportal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the search field to download.php.
network
low complexity
jportal
7.5
7.5
2005-09-24 CVE-2005-3045 SQL Injection vulnerability in MY Little Homepage MY Little Forum 1.3/1.5
SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote attackers to execute arbitrary SQL commands via the phrase field.
network
low complexity
my-little-homepage
7.5
7.5
2005-09-23 CVE-2005-2705 Integer Overflow vulnerability in Mozilla Browser/Firefox JavaScript Engine
Integer overflow in the JavaScript engine in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 might allow remote attackers to execute arbitrary code.
network
low complexity
mozilla
7.5
7.5
2005-09-23 CVE-2005-2702 Unspecified vulnerability in Mozilla Firefox and Mozilla Suite
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters.
network
low complexity
mozilla
7.5
7.5