Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-1079 | SQL injection vulnerability in index.php for zOOm Media Gallery 2.1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter. | 7.5 |
| 2005-05-02 | CVE-2005-1074 | Multiple vulnerability in Radscripts Radbids 2 SQL injection vulnerability in index.php for RadScripts RadBids Gold 2 allows remote attackers to execute arbitrary SQL commands via the mode parameter. | 7.5 |
| 2005-05-02 | CVE-2005-1062 | Remote Security vulnerability in Kerio products The administration protocol for Kerio WinRoute Firewall 6.x up to 6.0.10, Personal Firewall 4.x up to 4.1.2, and MailServer up to 6.0.8 allows remote attackers to quickly obtain passwords that are 5 characters or less via brute force methods. | 7.5 |
| 2005-05-02 | CVE-2005-1058 | Unspecified vulnerability in Cisco IOS 12.2T/12.3/12.3T Cisco IOS 12.2T, 12.3 and 12.3T, when processing an ISAKMP profile that specifies XAUTH authentication after Phase 1 negotiation, may not process certain attributes in the ISAKMP profile that specifies XAUTH, which allows remote attackers to bypass XAUTH and move to Phase 2 negotiations. | 7.5 |
| 2005-05-02 | CVE-2005-1057 | Unspecified vulnerability in Cisco IOS 12.2T/12.3/12.3T Cisco IOS 12.2T, 12.3 and 12.3T, when using Easy VPN Server XAUTH version 6 authentication, allows remote attackers to bypass authentication via a "malformed packet." | 7.5 |
| 2005-05-02 | CVE-2005-1054 | Unspecified vulnerability in Moderngigabyte Modernbill PHP remote file inclusion vulnerability in news.php in ModernBill 4.3.0 and earlier allows remote attackers to execute arbitrary PHP code by modifying the DIR parameter to reference a URL on a remote web server that contains the code. | 7.5 |
| 2005-05-02 | CVE-2005-1048 | Unspecified vulnerability in Postnuke Software Foundation Postnuke 0.760Rc3 SQL injection vulnerability in modules.php in PostNuke 0.760 RC3 allows remote attackers to execute arbitrary SQL statements via the sid parameter. | 7.5 |
| 2005-05-02 | CVE-2005-1046 | Buffer Overflow vulnerability in KDE 3.4.0 Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file. | 7.5 |
| 2005-05-02 | CVE-2005-1045 | Unspecified vulnerability in Centrinity Firstclass Desktop Client 8.0 OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark. | 7.5 |
| 2005-05-02 | CVE-2005-1042 | Unspecified vulnerability in PHP Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count. | 7.5 |