Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-10-04 | CVE-2002-0960 | Code Injection vulnerability in Voxel Dot Net CBMS Multiple cross-site scripting vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier allows remote attackers to execute arbitrary script as other CBMS users. | 7.5 |
| 2002-10-04 | CVE-2002-0959 | Unspecified vulnerability in Splatt Forum 3.0 Cross-site scripting vulnerability in Splatt Forum 3.0 allows remote attackers to execute arbitrary script as other users via an [img] tag with a closing quote followed by the script. | 7.5 |
| 2002-10-04 | CVE-2002-0958 | Cross-Site Scripting vulnerability in Ekilat LLC PHP(Reactor) 1.2.7 Cross-site scripting vulnerability in browse.php for PHP(Reactor) 1.2.7 allows remote attackers to execute script as other users via the go parameter in the comments section. | 7.5 |
| 2002-10-04 | CVE-2002-0956 | Unspecified vulnerability in ISS Blackice Agent 3.1Eal BlackICE Agent 3.1.eal does not always reactivate after a system standby, which could allow remote attackers and local users to bypass intended firewall restrictions. | 7.5 |
| 2002-10-04 | CVE-2002-0955 | Cross-Site Scripting vulnerability in Yabb 1Goldsp1 Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and earlier allows remote attackers to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error message. | 7.5 |
| 2002-10-04 | CVE-2002-0954 | Remote Security vulnerability in PIX Firewall The encryption algorithms for enable and passwd commands on Cisco PIX Firewall can be executed quickly due to a limited number of rounds, which make it easier for an attacker to decrypt the passwords using brute force techniques. | 7.5 |
| 2002-10-04 | CVE-2002-0953 | Remote File Include vulnerability in PHP Address PHP Address 0.2E globals.php in PHP Address before 0.2f, with the PHP allow_url_fopen and register_globals variables enabled, allows remote attackers to execute arbitrary PHP code via a URL to the code in the LangCookie parameter. | 7.5 |
| 2002-10-04 | CVE-2002-0950 | HTML Injection vulnerability in TransWare Active Mail 1.422/2.0 Cross-site scripting vulnerability in TransWARE Active! mail 1.422 and 2.0 allows remote attackers to execute arbitrary code via a certain e-mail header, which is not properly filtered. | 7.5 |
| 2002-10-04 | CVE-2002-0949 | Unspecified vulnerability in Telindus Adsl Router 1110/1120 Telindus 1100 series ADSL router allows remote attackers to gain privileges to the device via a certain packet to UDP port 9833, which generates a reply that includes the router's password and other sensitive information in cleartext. | 7.5 |
| 2002-10-04 | CVE-2002-0948 | Unspecified vulnerability in Scripts for Educators Makebook 2.2 Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email parameters, which are not properly filtered. | 7.5 |