[CLOSE] OSVDB ID : 15951 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'category_id', 'search_string', or 'search_category_id' variables upon submission to the basket.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15952 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the nickname, e-mail, topic or message fields upon submission to the forum_new_thread.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15953 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the nickname or message fields upon submission to the forum_thread.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15954 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page' variable upon submission to the page.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15955 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'item_id' or 'category_id' variables upon submission to the reviews.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15956 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'category_id' variable upon submission to the product_details.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15957 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'category_id' or 'search_string' variables upon submission to the products.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15958 - Disclosed: 2005-04-29

Description:

ViArt Shopo Enterprise contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'rp' or 'page' variables upon submission to the news_view.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 16046 - Disclosed: 2005-04-29

Description:

Cocktail contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plaintext passwords when cocktail passes the password in cleartext while executing functions, which may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 15964 - Disclosed: 2005-04-29

Description:

enVivo!CMS contains a flaw that may allow a remote attacker to gain administrative privileges. The issue is due to the admin_login.asp script not properly validating cookie data sent from the user. By modifying the cookie username and password values to "a' or 'a' = 'a", the application will authenticate the user as the legitimate administrator.

[CLOSE] OSVDB ID : 15965 - Disclosed: 2005-04-29

Description:

enVivo!CMS contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the Username field in the admin_login.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 15966 - Disclosed: 2005-04-29

Description:

enVivo!CMS contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the 'searchstring' or 'ID' variable in the default.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 16065 - Disclosed: 2005-04-29

Description:

The hardware monitoring drivers for the it87 and via686a chipsets in the Linux kernel contains a flaw that may allow a local denial of service. These drivers create a sysfs file called "alarms" incorrectly in R/W mode. The issue is triggered when a local user attempts to write to this file, and will result in loss of availability for the system by utilizing the CPU at 100% until the system is rebooted.

[CLOSE] OSVDB ID : 16363 - Disclosed: 2005-04-29

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the ipban.php script, which will disclose the physical installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 16364 - Disclosed: 2005-04-29

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the db.php script, which will disclose the physical installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 16365 - Disclosed: 2005-04-29

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker specifies the Norwegian language in the Reviews module. The module's call to /modules/Reviews/language/lang-norwegian.php fails which will disclose the physical installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 16366 - Disclosed: 2005-04-29

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker specifies the Greek language in the Downloads module. The module's call to /modules/Downloads/language/lang-greek.php fails which will disclose the physical installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 16367 - Disclosed: 2005-04-29

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker specifies the Indonesian language in the Downloads, Web_Links or Surveys module. The module's call to the lang-indonesian.php file fails which will disclose the physical installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 16368 - Disclosed: 2005-04-29

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker specifies the Portugese language in the Reviews, Web_Links or Journal module. The module's call to lang-portugese.php fails which will disclose the physical installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 23298 - Disclosed: 2005-04-29

Description:

tmsPUBLISHER contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker supplies a non-integer to the 'id' variable of the pagename.cfm script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 16051 - Disclosed: 2005-04-29

Description:

Kerio MailServer, Personal Firewall, and WinRoute Firewall contain a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plain text passwords when an attacker knows at least one valid password and can connect to the remote administration port. Passwords that are shorter than 6 characters can be easily brute forced, which may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 16052 - Disclosed: 2005-04-29

Description:

Multiple Kerio products contain a flaw that may allow a remote denial of service. The issue is triggered during the pre-authentication state. If a remote attacker forces the system to "compute unexpected conditions", "perform cryptographic operations" or exceed the limit of maximum number of user connections, it will result in loss of availability for the service.

[CLOSE] OSVDB ID : 15968 - Disclosed: 2005-04-29

Description:

WWWguestbook contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to 'password' variable in the login.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 16488 - Disclosed: 2005-04-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.php for Invision Power Board (IPB) 2.0.3 and 2.1 Alpha 2 allows remote attackers to inject arbitrary web script or HTML via the (1) act, (2) Members, (3) calendar, or (4) HID parameters.

[CLOSE] OSVDB ID : 15967 - Disclosed: 2005-04-29

Description:

Professional Guestbook contains a flaw that allows a remote SQL injection attack. This flaw exists because the application does not validate AdminPWD variables upon submission to the verify.asp script. This could allow a user to create a specially crafted request that would execute arbitrary code, leading to a loss of integrity.

[CLOSE] OSVDB ID : 16068 - Disclosed: 2005-04-29

Description:

602Lan Suite 2004 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'A' variable upon submission to the mail script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 16069 - Disclosed: 2005-04-29

Description:

602LAN Suite contains a flaw that allows a remote attacker to enumerate arbitrary files outside of the web path. The issue is due to the mail script not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the A variable, leading to loss of confidentiality. In addition, these requests could be scripted with the goal of consuming the server's resources, leading to a loss of availability.

[CLOSE] OSVDB ID : 23014 - Disclosed: 2005-04-29

Description:

TMSPublisher contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'q' variable upon submission to the 'search.cfm' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 16603 - Disclosed: 2005-04-28

Description:

Uphotogallery contains a flaw that may allow a malicious user to upload arbitrary files. The issue is triggered when the edit_image.asp is used by an authenticated user. It is possible that the flaw may allow malicious code to be uploaded resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15915 - Disclosed: 2005-04-28

Description:

Shadow contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the vipw script creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15916 - Disclosed: 2005-04-28

Description:

Shadow contains a flaw that may allow a malicious user to manipulate mailbox creation arbitrarily. The issue is triggered when only two arguments are passed to open() call in useradd script. It is possible that the flaw may allow arbitrary file manipulation resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15892 - Disclosed: 2005-04-28

Description:

Amazon Webstore contains a flaw that allows a remote cookie script injection attack. The flaw exists because the application does not properly validate variables set in the cookie. This could allow a user to create a specially crafted URL that would create a poisoned cookie that executes arbitrary script within the trust relationship between the user's browser and the server.

[CLOSE] OSVDB ID : 15893 - Disclosed: 2005-04-28

Description:

JustWilliam's Amazon Webstore contains a flaw that allows a remote cross site scripting attack. The flaw exists because the application does not validate the 'image' variable upon submission to the closeup.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15894 - Disclosed: 2005-04-28

Description:

Amazon Webstore contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'currentIsExpanded' or 'searchFor' variables upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15960 - Disclosed: 2005-04-28

Description:

HP OpenView Radia Management Portal contains a flaw that allows a remote attacker to execute arbitrary commands. The issue is due to the Management Agent service not properly sanitizing user-supplied input. With a specially crafted packet, a remote attacker could traverse out of the C:\Program Files\Novadigm directory and execute arbitrary commands with LOCAL system privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15959 - Disclosed: 2005-04-28

Description:

Mailing List Manager Pro contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the Admin_id and Admin_Password variables in the Login Panel script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries. Furthermore, the flaw allows anyone to login as admin, resulting in a loss of confidentiality and integrity.

[CLOSE] OSVDB ID : 16055 - Disclosed: 2005-04-28

Description:

Plans contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'theme_url' or 'display_type' variables upon submission to the plans.cgi script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 16054 - Disclosed: 2005-04-28

Description:

GnuTLS contains a flaw that may allow a remote denial of service. The issue is due to an error in the record packet parsing routines, and will result in loss of availability for the platform. No further details have been provided.

[CLOSE] OSVDB ID : 16353 - Disclosed: 2005-04-28

Description:

phpCOIN contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'phpcoinsessid' variable in the 'login.php' script not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 16354 - Disclosed: 2005-04-28

Description:

phpCOIN contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'topic_id' and 'dcat_id' variable in the Pages module not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.