[CLOSE] OSVDB ID : 24607 - Disclosed: 2006-03-31

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Keystone Digital Library Suite (DLS) 1.5.4 and earlier allow remote attackers to execute arbitrary SQL commands via the subject_type_id parameter in (1) the index page and (2) the search module.

[CLOSE] OSVDB ID : 24360 - Disclosed: 2006-03-30

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in MonAlbum 0.8.7 allow remote attackers to execute arbitrary SQL commands via (1) the pc parameter in (a) index.php and (2) pnom, (3) pcourriel, and (4) pcommentaire parameters in (b) image_agrandir.php.

[CLOSE] OSVDB ID : 24361 - Disclosed: 2006-03-30

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in MonAlbum 0.8.7 allow remote attackers to execute arbitrary SQL commands via (1) the pc parameter in (a) index.php and (2) pnom, (3) pcourriel, and (4) pcommentaire parameters in (b) image_agrandir.php.

[CLOSE] OSVDB ID : 26513 - Disclosed: 2006-03-30

Description:

Horde contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'url' variable upon submission to the test.php script when the 'mode' variable is set to the value 'phpinfo' or 'filetest'. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 26514 - Disclosed: 2006-03-30

Description:

Horde contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'name', 'email', 'subject', and 'message' variables upon submission to the templates/problem/problem.inc script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24301 - Disclosed: 2006-03-30

Description:

qliteNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the loginprocess.php script not properly sanitizing user-supplied input to the 'username' or 'password' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24284 - Disclosed: 2006-03-30

Description:

Claroline contains a flaw that allows a remote attacker to view arbitrary files outside of the web path. The issue is due to the 'rqmkhtml.php' script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'file' variable.

[CLOSE] OSVDB ID : 24285 - Disclosed: 2006-03-30

Description:

Claroline contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'file' variable upon submission to the rqmkhtml.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity. Additionally, this can be used to disclose the software installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24286 - Disclosed: 2006-03-30

Description:

Claroline contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to scormExport.inc.php not properly sanitizing user input supplied to the 'includePath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 24304 - Disclosed: 2006-03-30

Description:

v-creator contains a flaw that may allow a malicious user to execute arbitrary shell commands. The issue is triggered due to an input validation error in the 'enrypt()' and 'decrypt()' functions in VCEngine.php. It is possible that the flaw may allow arbitrary command execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 24300 - Disclosed: 2006-03-30

Description:

Esqlanelapse contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unknown or unspecified variables upon submission to an unknown or unspecified script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24296 - Disclosed: 2006-03-30

Description:

RedCMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'email', 'location', or 'website' fields upon submission to the register.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24297 - Disclosed: 2006-03-30

Description:

RedCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input to the 'username' and 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24298 - Disclosed: 2006-03-30

Description:

RedCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the profile.php script not properly sanitizing user-supplied input to the 'u' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24299 - Disclosed: 2006-03-30

Description:

RedCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the register.php script not properly sanitizing user-supplied input to unspecirfied variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24287 - Disclosed: 2006-03-30

Description:

Oxygen contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the post.php script not properly sanitizing user-supplied input to the 'fid' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24290 - Disclosed: 2006-03-30

Description:

QLnews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autorx' and 'newsx' variables upon submission to the news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24291 - Disclosed: 2006-03-30

Description:

QLnews contains a flaw that may allow a malicious user to execute arbitrary code. The issue is due to the the administrator having permission to add any content to the config.php script. Once modified to contain arbitrary PHP code, an attacker can call the script directly to execute the code.

[CLOSE] OSVDB ID : 24288 - Disclosed: 2006-03-30

Description:

X-Changer contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'from', 'into', and 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 27208 - Disclosed: 2006-03-30

Description:

(Description Provided by CVE) : Unspecified versions of Mozilla Firefox allow remote attackers to cause a denial of service (crash) via a web page that contains a large number of nested marquee tags. NOTE: a followup post indicated that the initial report could not be verified.

[CLOSE] OSVDB ID : 24313 - Disclosed: 2006-03-30

Description:

MediaSlash.com Gallery contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to index.php not properly sanitizing user input supplied to the 'rub' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 30353 - Disclosed: 2006-03-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in PHP Script Index allows remote attackers to execute arbitrary SQL commands via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 24263 - Disclosed: 2006-03-29

Description:

Samba winbindd contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plain text winbindd passwords of a domain member server. When the log level is set to 5 or higher, winbindd stores these credentials in a plain text file readable by non-administrative users, which may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 24246 - Disclosed: 2006-03-29

Description:

A remote overflow exists in MPlayer. MPlayer fails to properly handle a specially crafted ASF file in 'libmpdemux/asfheader.c' resulting in a integer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity and/or availability.

[CLOSE] OSVDB ID : 24247 - Disclosed: 2006-03-29

Description:

A remote overflow exists in MPlayer. MPlayer fails to properly sanitize the "thewLongsPerEntry" and "nEntriesInUse" values in the "indx" chunk in an AVI file in "libmpdemux/aviheader.c" resulting in a heap-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity and/or availability.

[CLOSE] OSVDB ID : 24239 - Disclosed: 2006-03-29

Description:

Virtual War contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to includes/functions_install.php not properly sanitizing user input supplied to the 'vwar_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 20835 - Disclosed: 2006-03-29

Description:

Basic Analysis and Security Engine (BASE) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate $_SERVER['REQUEST_URI'] variable upon submission to the PrintFreshPage() function. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24307 - Disclosed: 2006-03-29

Description:

Analysis Console for Intrusion Databases (ACID) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the $_SERVER['REQUEST_URI'] variable upon submission to the PrintFreshPage() function. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24262 - Disclosed: 2006-03-29

Description:

NetBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when 'ioctl' calls are made on Ethernet bridge interfaces. The operating system's kernel will not fully zero out temporary stack memory to hold the results of the 'ioctl' call which could disclose kernel stack memory to the calling process, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 24294 - Disclosed: 2006-03-29

Description:

(Description Provided by CVE) : Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.

[CLOSE] OSVDB ID : 24273 - Disclosed: 2006-03-29

Description:

VNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/admin.php script not properly sanitizing user-supplied input to the 'loginvar' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24274 - Disclosed: 2006-03-29

Description:

VNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the news.php script not properly sanitizing user-supplied input to the 'news' and 'nom' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24275 - Disclosed: 2006-03-29

Description:

VNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autorkomentarza' or 'tresckomentarza' variables upon submission to the news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24276 - Disclosed: 2006-03-29

Description:

[V]Book contains a flaw that may allow a remote attacker to execute arbitrary code. The issue occurs because program administrators are allowed to edit the admin/config.php file. By placing custom PHP code and then calling it, the code will be executed with the privileges of the web server.

[CLOSE] OSVDB ID : 24259 - Disclosed: 2006-03-29

Description:

ExplorerXP contains a flaw that allows a remote attacker to view files outside of the web path. The issue is due to the dir.php script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'chemin' variable.

[CLOSE] OSVDB ID : 24260 - Disclosed: 2006-03-29

Description:

ExplorerXP contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'chemin' variable upon submission to the dir.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24270 - Disclosed: 2006-03-29

Description:

[V]Book contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'x' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 24271 - Disclosed: 2006-03-29

Description:

[V]book contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autor', 'www', 'temat', or 'tresc' variables upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24272 - Disclosed: 2006-03-29

Description:

[V]Book contains a flaw that may allow a remote attacker to execute arbitrary code. The issue occurs because program administrators are allowed to edit the config.php file. By placing custom PHP code and then calling it, the code will be executed with the privileges of the web server.

[CLOSE] OSVDB ID : 24522 - Disclosed: 2006-03-29

Description:

WebCalendar contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker makes a direct request to the groups.php script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.