| OSVDB ID | Disclosure Date | Title |
|---|
|
15027
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.php, (5) profile_options.php, (6) profile_perso.php, (7) profile_pm.php, or (8) readannonce.php, which leaks the full pathname in a PHP error message.
|
2005-03-20
|
CoolForum profile_accueil.php Path Disclosure
|
|
15028
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.php, (5) profile_options.php, (6) profile_perso.php, (7) profile_pm.php, or (8) readannonce.php, which leaks the full pathname in a PHP error message.
|
2005-03-20
|
CoolForum profile_mdp.php Path Disclosure
|
|
15029
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.php, (5) profile_options.php, (6) profile_perso.php, (7) profile_pm.php, or (8) readannonce.php, which leaks the full pathname in a PHP error message.
|
2005-03-20
|
CoolForum profile_notify.php Path Disclosure
|
|
15030
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.php, (5) profile_options.php, (6) profile_perso.php, (7) profile_pm.php, or (8) readannonce.php, which leaks the full pathname in a PHP error message.
|
2005-03-20
|
CoolForum profile_options.php Path Disclosure
|
|
15031
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.php, (5) profile_options.php, (6) profile_perso.php, (7) profile_pm.php, or (8) readannonce.php, which leaks the full pathname in a PHP error message.
|
2005-03-20
|
CoolForum profile_perso.php Path Disclosure
|
|
15032
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.php, (5) profile_options.php, (6) profile_perso.php, (7) profile_pm.php, or (8) readannonce.php, which leaks the full pathname in a PHP error message.
|
2005-03-20
|
CoolForum profile_pm.php Path Disclosure
|
|
16682
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to manipulate SQL commands via certain requests to (1) alert.php or (2) viewip.php, possibly due to a SQL injection vulnerability.
|
2005-03-20
|
CoolForum alert.php SQL Injection
|
|
16683
Description:
(Description Provided by CVE) : CoolForum 0.8.1 beta and earlier allows remote attackers to manipulate SQL commands via certain requests to (1) alert.php or (2) viewip.php, possibly due to a SQL injection vulnerability.
|
2005-03-20
|
CoolForum viewip.php SQL Injection
|
|
14917
Description:
(Description Provided by CVE) : betaparticle blog (bp blog) stores the database under the web root, which allows remote attackers to obtain sensitive information via a direct request to (1) dbBlogMX.mdb for versions before 3.0, or (2) Blog.mdb for versions 3.0 and later. NOTE: it was later reported that vector 2 also affects versions 6.0 through 9.0.
|
2005-03-20
|
betaparticle dbBlogMX.mdb Direct Request Database Disclosure
|
|
14918
Description:
(Description Provided by CVE) : betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.
|
2005-03-20
|
betaparticle upload.asp Unauthenticated File Upload
|
|
14919
Description:
(Description Provided by CVE) : betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.
|
2005-03-20
|
betaparticle myFiles.asp Unauthenticated File Manipulation
|
|
14904
Description:
(Description Provided by CVE) : Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote attackers to cause a denial of service via an empty UDP packet to the server, which cannot detect that a new packet has arrived using the socket ioctl.
|
2005-03-20
|
FUN labs Game Engine Malformed UDP DoS
|
|
14905
Description:
(Description Provided by CVE) : Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote attackers to cause a denial of service (crash from invalid memory access) via a malformed join packet with values that cause the server to copy more memory than was actually provided in the packet.
|
2005-03-20
|
FUN labs Game Engine Malformed Join Packet DoS
|
|
15628
Description:
Unknown / Incomplete
|
2005-03-20
|
eGroupWare cookies.txt Cleartext Authentication Credential Disclosure
|
|
15729
Description:
(Description Provided by CVE) : The fib_seq_start function in fib_hash.c in Linux kernel allows local users to cause a denial of service (system crash) via /proc/net/route.
|
2005-03-19
|
Linux Kernel fib_seq_start Function Local DoS
|
|
14927
Description:
Unknown / Incomplete
|
2005-03-19
|
Proview Disassembler (PVDasm) Filename Overflow
|
|
14920
Description:
TRG News contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'article.php' not properly sanitizing user input supplied to the 'dir' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-19
|
TRG News article.php Remote File Inclusion
|
|
14921
Description:
TRG News contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'authorall.php' not properly sanitizing user input supplied to the 'dir' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-19
|
TRG News authorall.php Remote File Inclusion
|
|
14922
Description:
TRG News contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'comment.php' not properly sanitizing user input supplied to the 'dir' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-19
|
TRG News comment.php Remote File Inclusion
|
|
14923
Description:
TRG News contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'display.php' not properly sanitizing user input supplied to the 'dir' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-19
|
TRG News display.php Remote File Inclusion
|
|
14924
Description:
TRG News contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'displayall.php' not properly sanitizing user input supplied to the 'dir' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-19
|
TRG News displayall.php Remote File Inclusion
|
|
14889
Description:
Unknown / Incomplete
|
2005-03-19
|
ciamos highlight.php Information Disclosure
|
|
14890
Description:
E-Xoops contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker invokes highlight.php to view the source code of mainfile.php, which will disclose database connection information, including the password resulting in a loss of confidentiality.
|
2005-03-19
|
E-Xoops highlight.php Information Disclosure
|
|
14957
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in setuser.php of the Digitanium addon to PHP-Fusion 5.01 allows remote attackers to inject arbitrary web script or HTML via the (1) user_name or (2) user_pass parameters.
|
2005-03-19
|
PHP-Fusion setuser.php Addon Multiple Parameter XSS
|
|
14888
Description:
(Description Provided by CVE) : Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which reveals the path in a PHP error message.
|
2005-03-19
|
ciamos viewcat.php Error Message Path Disclosure
|
|
15012
Description:
Unknown / Incomplete
|
2005-03-18
|
Multiple Anti-Virus Unfiltered Escape Sequence Malformed File Name
Bypass
|
|
16707
Description:
The Belkin 54G Wireless 802.11g Access Point (F5D7130) contains a flaw that may allow a remote denial of service. The issue is triggered when SNMP is enabled in a default configuration. A remote attacker with access to the wireless network can issue unspecified SNMP datagrams to the device which will result in loss of availability for the wireless access point.
|
2005-03-18
|
Belkin 54G Wireless 802.11g Access Point Unspecified SNMP DoS
|
|
16708
Description:
The Belkin 54G Wireless 802.11g Access Point (F5D7130) contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when SNMP is enabled in a default configuration with known SNMP community names. A remote attacker with access to the wireless network can access the device with SNMP requests, which will disclose configuration information resulting in a loss of confidentiality.
|
2005-03-18
|
Belkin 54G Wireless 802.11g Access Point Default SNMP Community String
|
|
16709
Description:
The Belkin 54G Wireless 802.11g Access Point (F5D7130) contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the device broadcasts UPNP packets, which will disclose an administrative URI which can be accessed by a remote attacker with access to the wireless network without authentication, resulting in a loss of confidentiality.
|
2005-03-18
|
Belkin 54G Wireless 802.11g Access Point UPNP Datagram Authentication URI Disclosure
|
|
14902
Description:
(Description Provided by CVE) : Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which reveals the path in a PHP error message.
|
2005-03-18
|
RunCMS viewcat.php Error Message Path Disclosure
|
|
14903
Description:
Unknown / Incomplete
|
2005-03-18
|
RunCMS highlight.php Information Disclosure
|
|
14897
Description:
(Description Provided by CVE) : Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
|
2005-03-18
|
Icecast XSL Parser Stylesheet Source Disclosure
|
|
14898
Description:
(Description Provided by CVE) : IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
|
2005-03-18
|
Icecast Malformed XSL File Overflow
|
|
20780
Description:
Unknown / Incomplete
|
2005-03-18
|
Exponent CMS Search Module spider.php Path Disclosure
|
|
14860
Description:
(Description Provided by CVE) : Multiple buffer overflows in Cain & Abel before 2.67 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via (1) an IKE packet with a large ID field that is not properly handled by the PSK sniffer filter, (2) the HTTP sniffer filter, or the (3) POP3, (4) SMTP, (5) IMAP, (6) NNTP, or (7) TDS sniffer filters.
|
2005-03-18
|
Cain & Abel PSK Sniffer Malformed IKE Packet Overflow
|
|
14925
Description:
CzarNews contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to headlines.php not properly sanitizing user input supplied to the 'tpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-18
|
CzarNews headlines.php Remote File Inclusion
|
|
14926
Description:
CzarNews contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to news.php not properly sanitizing user input supplied to the 'tpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2005-03-18
|
CzarNews news.php tpath Parameter Remote File Inclusion
|
|
14864
Description:
(Description Provided by CVE) : The rose_rt_ioctl function in rose_route.c for Radionet Open Source Environment (ROSE) in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats.
|
2005-03-18
|
Linux Kernel ROSE rose_rt_ioctl Function ndigis Argument Error
|
|
14865
Description:
Unknown / Incomplete
|
2005-03-18
|
Linux Kernel Arbitrary SCSI Tape Drive Manipulation
|
|
23396
Description:
Unknown / Incomplete
|
2005-03-18
|
LinPHA forth_stage_install.php Predictable sqlite DB File Issue
|
