Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0882 | SQL Injection vulnerability in Birdblog 1.0.0/1.1.0 SQL injection vulnerability in admincore.php in BirdBlog before 1.2.0 allows remote attackers to execute arbitrary SQL commands via the (1) userid or (2) userpw parameters. | 7.5 |
| 2005-05-02 | CVE-2005-0879 | Remote PHP File Include vulnerability in Vortex Portal Vortex Portal 2.0 PHP remote file include vulnerability in (1) content.php and (2) index.php for Vortex Portal allows remote attackers to execute arbitrary PHP code via a URL in the act parameter. | 7.5 |
| 2005-05-02 | CVE-2005-0877 | Origin Validation Error vulnerability in Thekelleys Dnsmasq Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq. | 7.5 |
| 2005-05-02 | CVE-2005-0868 | Remote Security vulnerability in Client Access AS/400 Telnet 5250 terminal emulation clients, as implemented by (1) IBM client access, (2) Bosanova, (3) PowerTerm, (4) Mochasoft, and possibly other emulations, allows malicious AS/400 servers to execute arbitrary commands via a STRPCO (Start PC Organizer) command followed by STRPCCMD (Start PC command), as demonstrated by creating a backdoor account using REXEC. | 7.5 |
| 2005-05-02 | CVE-2005-0867 | Unspecified vulnerability in Linux Kernel 2.6.0 Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file. | 7.2 |
| 2005-05-02 | CVE-2005-0865 | Remote vulnerability in Securecomputing Samsung Adsl Modem Smdk8947V1.2 Samsung ADSL Modem SMDK8947v1.2 uses default passwords for the (1) root, (2) admin, or (3) user users, which allows remote attackers to gain privileges via Telnet or an HTTP request to adsl.cgi. | 7.5 |
| 2005-05-02 | CVE-2005-0862 | Remote File Include vulnerability in PHPopenchat 2.3.4/3.0.1 Multiple PHP remote file inclusion vulnerabilities in PHPOpenChat 3.0.1 and earlier allow remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter to (1) poc_loginform.php or (2) phpbb/poc.php, the poc_root_path parameter to (3) phpbb/poc.php, (4) phpnuke/ENGLISH_poc.php, (5) phpnuke/poc.php, or (6) yabbse/poc.php, or (7) the sourcedir parameter to yabbse/poc.php. | 7.5 |
| 2005-05-02 | CVE-2005-0861 | Unspecified vulnerability in Delegate Multiple buffer overflows in DeleGate before 8.11.1 may allow attackers to cause a denial of service or execute arbitrary code, possibly due to "overflows on arrays." | 7.5 |
| 2005-05-02 | CVE-2005-0860 | Remote File Include vulnerability in the Rusted Gate TRG News 3.0 PHP remote file inclusion vulnerability in TRG News Script 3.0 allows remote attackers to execute arbitrary PHP code via the dir parameter to (1) article.php, (2) authorall.php, (3) comment.php, (4) display.php, or (5) displayall.php. | 7.5 |
| 2005-05-02 | CVE-2005-0859 | Remote File Include vulnerability in Czaries Network Czarnews 1.13B PHP remote file inclusion vulnerability in CzarNews 1.13b allows remote attackers to execute arbitrary PHP code via the tpath parameter to (1) headlines.php or (2) news.php. | 7.5 |