Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-07-03 | CVE-2002-0554 | SQL Injection vulnerability in IBM Informix web Datablade 4.10/4.11/4.12 webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request. | 7.5 |
2002-07-03 | CVE-2002-0553 | Unspecified vulnerability in Turnkey Solutions Sunshop Shopping Cart Cross-site scripting vulnerability in SunShop 2.5 and earlier allows remote attackers to gain administrative privileges to SunShop by injecting the script into fields during new customer registration. | 7.5 |
2002-07-03 | CVE-2002-0552 | Remote Buffer Overflow vulnerability in Melange Chat System 2.0.2Beta2 Multiple buffer overflows in Melange Chat server 2.02 allow remote or local attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long argument in the /yell command, (2) long lines in the /etc/melange.conf configuration file, (3) long file names, or possibly other attacks. | 7.5 |
2002-07-03 | CVE-2002-0551 | Unspecified vulnerability in GCF Dynamic Guestbook 3.0 Cross-site scripting vulnerability in Dynamic Guestbook 3.0 allows remote attackers to execute code in clients who access guestbook pages via the parameters (1) name, (2) mail, or (3) kommentar. | 7.5 |
2002-07-03 | CVE-2002-0550 | Remote Command Execution vulnerability in GCF Dynamic Guestbook 3.0 Dynamic Guestbook 3.0 allows remote attackers to execute arbitrary code via shell metacharacters in the gbdaten parameter. | 7.5 |
2002-07-03 | CVE-2002-0549 | Unspecified vulnerability in Anthill Cross-site scripting vulnerabilities in Anthill allow remote attackers to execute script as other Anthill users. | 7.5 |
2002-07-03 | CVE-2002-0548 | Authentication Bypass vulnerability in Anthill postbug.php Anthill allows remote attackers to bypass authentication and file bug reports by directly accessing the postbug.php program instead of enterbug.php. | 7.5 |
2002-07-03 | CVE-2002-0547 | Buffer Overflow vulnerability in Nullsoft Winamp Minibrowser ID3v2 Buffer overflow in the mini-browser for Winamp 2.79 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field of an ID3v2 tag. | 7.5 |
2002-07-03 | CVE-2002-0546 | Unspecified vulnerability in Nullsoft Winamp 2.78/2.79 Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file. | 7.5 |
2002-07-03 | CVE-2002-0544 | Unspecified vulnerability in Aprelium Technologies Abyss web Server 1.0 Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges. | 7.2 |