Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-1880 | Denial-Of-Service vulnerability in OpenLDAP Memory leak in the back-bdb backend for OpenLDAP 2.1.12 and earlier allows remote attackers to cause a denial of service (memory consumption). | 5.0 |
2004-12-31 | CVE-2004-1879 | HTML Injection vulnerability in PHPkit 1.6.03 Cross-site scripting (XSS) vulnerability in PHPKIT 1.6.03 allows allows remote attackers to inject arbitrary web script or HTML via forum messages. network phpkit | 4.3 |
2004-12-31 | CVE-2004-1869 | Remote Denial Of Service vulnerability in Nival Interactive Etherlords and Etherlords II Etherlords I 1.07 and earlier and Etherlords II 1.03 and earlier allows remote attackers to cause a denial of service (crash) by sending a packet that specifies the size for the next packet, then sending a larger packet than specified, which causes Etherlords to read unallocated memory. | 5.0 |
2004-12-31 | CVE-2004-1867 | HTML Injection vulnerability in Web Fresh Fresh Guest Book 1.0/2.0/2.1 Cross-site scripting (XSS) vulnerability in guest.cgi in Fresh Guest Book allows remote attackers to inject arbitrary web script or HTML via the Name field. network web-fresh | 4.3 |
2004-12-31 | CVE-2004-1863 | Cross-Site Scripting vulnerability in XMB Forum XMB 1.8Sp3/1.9Beta Multiple cross-site scripting (XSS) vulnerabilities in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allow remote attackers to inject arbitrary web script or HTML via (1) the u2uheader parameter in editprofile.php, the restrict parameter in (2) member.php, (3) misc.php, and (4) today.php, and (5) an arbitrary parameter in phpinfo.php. | 4.3 |
2004-12-31 | CVE-2004-1860 | Buffer Overflow vulnerability in XMB Forum XMB 1.8Sp3/1.9Beta Buffer overflow in Check Point SmartDashboard in Check Point NG AI R54 and R55 allows remote authenticated users to cause a denial of service (server disconnect) and possibly execute arbitrary code via a large filter on a column when using SmartView Tracker. | 5.0 |
2004-12-31 | CVE-2004-1858 | HP Web Jetadmin 7.5.2546 allows remote attackers to cause a denial of service (crash) via a malformed request, possibly due to a stricmp() error from an invalid use of the "$" character. | 5.0 |
2004-12-31 | CVE-2004-1845 | Multiple vulnerability in Expinion.Net News Manager Lite 2.5 Multiple cross-site scripting (XSS) vulnerabilities in News Manager Lite 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to comment_add.asp, (2) search parameter to search.asp, or (3) n parameter to category_news_headline.asp. network expinion-net | 4.3 |
2004-12-31 | CVE-2004-1844 | Cross-Site Scripting vulnerability in Expinion.net Member Management System Cross-site scripting (XSS) vulnerability in Member Management System 2.1 allows remote attackers to inject arbitrary web script or HTML via (1) the err parameter to error.asp or (2) register.asp. network expinion-net | 4.3 |
2004-12-31 | CVE-2004-1837 | HTML Injection vulnerability in Joel Palmius Mod_Survey Survey Input Field Cross-site scripting (XSS) vulnerability in Mod_survey 3.0.x before 3.0.16-pre2 and 3.2.x before 3.2.0-pre4 allows remote attackers to inject arbitrary web script or HTML via the certain survey fields or error messages for malformed query strings. network joel-palmius | 4.3 |