[CLOSE] OSVDB ID : 54706 - Disclosed: 2009-05-19

Description:

A buffer overflow exists in AOL Radio. The IWinAmpActiveX control fails to validate data passed to the ConvertFile() function resulting in a stack overflow. With a specially crafted web site, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 40628 - Disclosed: 2008-01-24

Description:

(Description Provided by CVE) : The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the ImageShack site via a file: URI argument to the BuildSlideShow method.

[CLOSE] OSVDB ID : 40616 - Disclosed: 2008-01-16

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the PTZCamPanelCtrl ActiveX control (CamPanel.dll) in RTS Sentry 2.1.0.2 allows remote attackers to execute arbitrary code via a long second argument to the ConnectServer method.

[CLOSE] OSVDB ID : 38282 - Disclosed: 2007-10-29

Description:

A buffer overflow exists in GOM Player. GomWeb3.dll fails to validate string data passed to the OpenURL() method resulting in a stack overflow. With a specially crafted web site, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 38335 - Disclosed: 2007-08-28

Description:

EasyMail Objects is prone to an overflow condition. The EasyMailSMTPObj ActiveX control fails to properly sanitize user-supplied input to the SubmitTo Express method resulting in a stack overflow. With a specially crafted website, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 49493 - Disclosed: 2006-12-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 34435 - Disclosed: 2006-12-11

Description:

FileZilla FTP Server 0.9.21 and earlier are vulnerable to a NULL pointer dereference condition resulting in a Denial of Service.

[CLOSE] OSVDB ID : 28456 - Disclosed: 2006-09-04

Description:

TikiWiki contains a flaw that may allow a malicious user to execute arbitrary PHP code. The issue is triggered due to the jhot.php script not correctly verifying uploaded files. It is possible that the flaw may allow arbitrary PHP code execution by uploading a malicious PHP script resulting in a loss of integrity.

[CLOSE] OSVDB ID : 27984 - Disclosed: 2006-08-17

Description:

CubeCart contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'gateway/Protx/confirmed.php' script not properly sanitizing user-supplied input to the 'oid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 27791 - Disclosed: 2006-08-05

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in trackback.php in myWebland myBloggie 2.1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) title, (2) url, (3) excerpt, or (4) blog_name parameters.

[CLOSE] OSVDB ID : 27782 - Disclosed: 2006-08-03

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 27442 - Disclosed: 2006-07-20

Description:

Loudblog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 27164 - Disclosed: 2006-07-13

Description:

Phorum contains a flaw that may allow an attacker to include arbitrary files from local resources. The issue is due to 'pm.php' not properly sanitizing user input supplied to the 'template' variable. This may allow an attacker to inject arbitrary PHP code into the web logs before including the log via the vulnerable script.

[CLOSE] OSVDB ID : 27117 - Disclosed: 2006-07-07

Description:

Papoo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "titel" and "ausgabe" variables upon submission to the interna/hilfe.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 27118 - Disclosed: 2006-07-07

Description:

Papoo contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the forumthread.php script not properly sanitizing user-supplied input to the 'msgid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 27126 - Disclosed: 2006-07-07

Description:

Pivot contains a flaw that may allow a malicious user to bypass certain security restrictions and compromise a vulnerable system. The issue is triggered when a malicious file with multiple extensions is uploaded to the "images" directory via the includes/editor/insert_image.php script. It is possible that the flaw may allow a malicious user to upload malicious PHP scripts and execute arbitrary commands with the privileges of the web server resulting in a loss of integrity.

[CLOSE] OSVDB ID : 27127 - Disclosed: 2006-07-07

Description:

Pivot contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'fg', 'line1', 'line2', 'bg', 'c1', 'c2', 'c3', and 'c4' variables upon submission to the blogroll.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 27128 - Disclosed: 2006-07-07

Description:

Pivot contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'name' and 'js_name' variables upon submission to the edit_menu.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 27129 - Disclosed: 2006-07-07

Description:

Pivot contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'h' and 'w' variables upon submission to the photo.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 27512 - Disclosed: 2006-07-07

Description:

Pivot contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to edit_new.php not properly sanitizing user input supplied to the 'Paths[extensions_path]' variable. This may allow an attacker to include a file from the local host or a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26877 - Disclosed: 2006-06-28

Description:

Blog:Cms contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 26626 - Disclosed: 2006-06-17

Description:

Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the web link submission script not properly sanitizing user-supplied input to the 'Title' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 26624 - Disclosed: 2006-06-17

Description:

Mambo contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the web link submission script not properly sanitizing user-supplied input to the 'Title' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 26588 - Disclosed: 2006-06-16

Description:

Bitweaver contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'feedback' variable upon submission to the articles/index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 26589 - Disclosed: 2006-06-16

Description:

Bitweaver contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when invalid input is passed to the 'sort_mode' parameter in /users/index.php, which will disclose full installation path and SQL table informations resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 26590 - Disclosed: 2006-06-16

Description:

bitweaver contains a flaw that may allow a malicious user to conduct HTTP response splitting attacks using CRLF sequences. The issue is triggered when CRLF sequences are injected into multiple parameters in the HTTP Header of index.php including the BWSESSION parameter.

[CLOSE] OSVDB ID : 26604 - Disclosed: 2006-06-03

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in index.php in Pixelpost 1-5rc1-2 and earlier allow remote attackers to execute arbitrary SQL commands, and leverage them to gain administrator privileges, via the (1) category or (2) archivedate parameter.

[CLOSE] OSVDB ID : 25777 - Disclosed: 2006-05-25

Description:

Wordpress contains a flaw that may allow a malicious user to compromise a vulnerable system. The issue is triggered due to a lack of proper sanitization of various fields when registering or updating the user profile before being stored in PHP scripts in the wp-content/cache/userlogins/ and wp-content/cache/users/ directories inside the web root. It is possible that the flaw may allow an attacker to inject and execute arbitrary PHP code via the newline character resulting in a loss of integrity.

[CLOSE] OSVDB ID : 25749 - Disclosed: 2006-05-23

Description:

Nucleus contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to PLUGINADMIN.php not properly sanitizing user input supplied to the "GLOBALS[DIR_LIBS]" variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 25683 - Disclosed: 2006-05-21

Description:

Xoops contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when passing input to "xoopsConfig" array parameter when the "xoopsOption[nocommon]" parameter is defined, which will disclose arbitrary files from local resources resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 25532 - Disclosed: 2006-05-15

Description:

Sugar Suite contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to multiple scripts in the "modules" directory not properly sanitizing user input supplied to the "sugarEntry" gloabl variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 25494 - Disclosed: 2006-05-11

Description:

Unclassified NewsBoard contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to unb_lib/abbc.css.php not properly sanitizing user input supplied to the "ABBC[Config][smileset]" variable. This may allow an attacker access arbitrary local files or include a file from the local host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 24741 - Disclosed: 2006-04-15

Description:

PHP Album contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to language.php not properly sanitizing user input supplied to the 'data_dir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 24559 - Disclosed: 2006-04-11

Description:

Simplog contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to /doc/index.php script not properly sanitizing user input supplied to the 's' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 24560 - Disclosed: 2006-04-11

Description:

Simplog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'blogid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24561 - Disclosed: 2006-04-11

Description:

Simplog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the archive.php script not properly sanitizing user-supplied input to the 'blogid', 'm' or 'y' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24562 - Disclosed: 2006-04-11

Description:

Simplog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'btag' variable upon submission to the login.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24284 - Disclosed: 2006-03-30

Description:

Claroline contains a flaw that allows a remote attacker to view arbitrary files outside of the web path. The issue is due to the 'rqmkhtml.php' script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'file' variable.

[CLOSE] OSVDB ID : 24285 - Disclosed: 2006-03-30

Description:

Claroline contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'file' variable upon submission to the rqmkhtml.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity. Additionally, this can be used to disclose the software installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24286 - Disclosed: 2006-03-30

Description:

Claroline contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to scormExport.inc.php not properly sanitizing user input supplied to the 'includePath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.