Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-0345 | Unspecified vulnerability in PHP Fusion PHP Fusion 4.0 viewthread.php in php-fusion 4.x does not check the (1) forum_id or (2) forum_cat parameters, which allows remote attackers to view protected forums via the thread_id parameter. | 5.0 |
2005-05-02 | CVE-2005-0344 | Directory Traversal vulnerability in Software602 602Lan Suite 2004.0.04.1221 Directory traversal vulnerability in 602LAN SUITE 2004.0.04.1221 allows remote authenticated users to upload and execute arbitrary files via a .. | 5.0 |
2005-05-02 | CVE-2005-0341 | Cross-Site Scripting vulnerability in Apple Safari 1.2.4 Apple Safari 1.2.4 does not obey the Content-type field in the HTTP header and renders text as HTML, which allows remote attackers to inject arbitrary web script or HTML and perform cross-site scripting (XSS) attacks. network apple | 4.3 |
2005-05-02 | CVE-2005-0340 | Remote Integer Overflow vulnerability in Apple Mac OS X AppleFileServer Integer signedness error in Apple File Service (AFP Server) allows remote attackers to cause a denial of service (application crash) via a negative UAM string length in a FPLoginExt packet. | 5.0 |
2005-05-02 | CVE-2005-0336 | Multiple vulnerability in Emotion Mediapartner web Server 5.0 Cross-site scripting (XSS) vulnerability in EMotion MediaPartner Web Server 5.0 allows remote attackers to inject arbitrary HTML or web script, as demonstrated using a URL containing .. network emotion | 4.3 |
2005-05-02 | CVE-2005-0335 | Multiple vulnerability in Emotion Mediapartner web Server 5.0 Directory traversal vulnerability in EMotion MediaPartner Web Server 5.0 allows remote attackers to read arbitrary files via a .. | 5.0 |
2005-05-02 | CVE-2005-0334 | Unspecified vulnerability in Linksys Psus4 Printserver 6032 Linksys PSUS4 running firmware 6032 allows remote attackers to cause a denial of service (device crash) via an HTTP POST request containing an unknown parameter without a value. | 5.0 |
2005-05-02 | CVE-2005-0333 | Remote Denial Of Service vulnerability in Lanchat PRO Revival Lanchat PRO Revival 1.666C LANChat Pro Revival 1.666c allows remote attackers to cause a denial of service (application crash) via a malformed UDP packet. | 5.0 |
2005-05-02 | CVE-2005-0328 | Remote Security vulnerability in Rt311 Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MAC address. | 5.0 |
2005-05-02 | CVE-2005-0326 | Information Disclosure vulnerability in PHP Arena Pafiledb 3.1 pafiledb.php in PaFileDB 3.1 allows remote attackers to gain sensitive information via an invalid or missing action parameter, which reveals the path in an error message when it cannot include a login.php script. | 5.0 |