Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0930 | HTML Injection vulnerability in Chatness 2.5.1 Cross-site scripting (XSS) vulnerability in message.php in Chatness 2.5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) the user field or (2) the message parameter to message.php. network chatness | 4.3 |
| 2005-05-02 | CVE-2005-0928 | Unspecified vulnerability in Photopost PHP PRO 5.02 Multiple cross-site scripting (XSS) vulnerabilities in PhotoPost PHP Pro 5.x allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) password, (3) ppuser, (4) sort, or (5) si parameters to showgallery.php, the (6) ppuser, (7) sort, or (8) si parameters to showmembers.php, or (9) the photo parameter to slideshow.php. network photopost | 4.3 |
| 2005-05-02 | CVE-2005-0926 | Unspecified vulnerability in Sylpheed Buffer overflow in Sylpheed before 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attachments with MIME-encoded file names. | 5.1 |
| 2005-05-02 | CVE-2005-0925 | Cross-Site Scripting vulnerability in Uapplication Ublog Cross-site scripting (XSS) vulnerability in login.asp for Ublog Reload 1.0 through 1.0.4 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. network uapplication | 4.3 |
| 2005-05-02 | CVE-2005-0922 | Remote Denial Of Service vulnerability in Symantec products Unknown vulnerability in the Auto-Protect module in Symantec Norton AntiVirus 2004 and 2005, as also used in Internet Security 2004/2005 and System Works 2004/2005, allows attackers to cause a denial of service (system hang or crash) by triggering a scan of a certain file type. | 5.0 |
| 2005-05-02 | CVE-2005-0921 | Unspecified vulnerability in Microsoft Outlook Connector 2002 Microsoft Outlook 2002 Connector for IBM Lotus Domino 2.0 allows local users to save passwords and login credentials locally, even when password caching is disabled by a group policy. | 4.6 |
| 2005-05-02 | CVE-2005-0910 | Cross-Site Scripting vulnerability in E-Xoops Multiple cross-site scripting (XSS) vulnerabilities in exoops allow remote attackers to inject arbitrary web script or HTML via (1) the sortdays parameter to viewforum.php or (2) the viewcat parameter to index.php. network e-xoops | 4.3 |
| 2005-05-02 | CVE-2005-0901 | Cross-Site Scripting vulnerability in Nukebookmarks 0.6 Multiple cross-site scripting (XSS) vulnerabilities in NukeBookmarks 0.6 for PHP-Nuke allow remote attackers to inject arbitrary web script or HTML via the (1) catname, (2) markname, (3) comment, or (4) category parameter. network nukebookmarks | 4.3 |
| 2005-05-02 | CVE-2005-0896 | Cross-Site Scripting vulnerability in Accomplishtechnology PHPmydirectory 10.1.3 Multiple cross-site scripting (XSS) vulnerabilities in review.php in phpMyDirectory 10.1.3-rel allow remote attackers to inject arbitrary web script or HTML via the (1) subcat, (2) page, or (3) subsubcat parameter. | 4.3 |
| 2005-05-02 | CVE-2005-0895 | Remote Denial of Service vulnerability in Netcomm Nb1300 4.4.1 Netcomm 1300NB DSL Modem allows remote attackers to cause a denial of service (device hang) via a large number of ping packets. | 5.0 |