[CLOSE] OSVDB ID : 29449 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in OpenBiblio before 0.5.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the page parameter to shared/help.php or (2) the tab parameter to shared/header.php.

[CLOSE] OSVDB ID : 29450 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in OpenBiblio before 0.5.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the page parameter to shared/help.php or (2) the tab parameter to shared/header.php.

[CLOSE] OSVDB ID : 29451 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in the reports system in OpenBiblio before 0.5.2 allows remote attackers with report privileges to execute arbitrary SQL commands via unspecified vectors.

[CLOSE] OSVDB ID : 29435 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in userupload.php in OlateDownload 3.4.0 allows remote attackers to inject arbitrary web script or HTML via the description_small parameter.

[CLOSE] OSVDB ID : 29436 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in OlateDownload 3.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) page parameter in details.php or the (2) query parameter in search.php.

[CLOSE] OSVDB ID : 29437 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in OlateDownload 3.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) page parameter in details.php or the (2) query parameter in search.php.

[CLOSE] OSVDB ID : 32107 - Disclosed: 2006-09-30

Description:

Mozilla Firefox and Mozilla SeaMonkey contain a flaw that may allow a remote attacker to perform cross-site scripting attacks. The issue is due to improper validation of user-supplied input by the browser.js script. The flaw is triggered when the victim visits the attacker's site which is constructed so that it frames the target site plus another frame whose source is the same data: URL as the victim site. If the attacker can then convince the victim to open a specially-crafted javascript: URL popup from the data: frame the popup could inject a malicious script, which would be executed in a victim's web browser within the security context of the hosting web site, resulting in a loss of confidentiality and/or integrity.

[CLOSE] OSVDB ID : 29464 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : Eval injection vulnerability in Template.php in HAMweather 3.9.8.4 and earlier allows remote attackers to execute arbitrary code via a modified query string, which is supplied to an eval function call within the do_parse_code function.

[CLOSE] OSVDB ID : 29557 - Disclosed: 2006-09-30

Description:

AAIportal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due an unspecified script not properly sanitizing user-supplied input. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 32600 - Disclosed: 2006-09-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 33916 - Disclosed: 2006-09-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in wamp_dir/setup/yesno.phtml in VAMP Webmail 2.0beta1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the no_url parameter.

[CLOSE] OSVDB ID : 32320 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Groupee UBB.threads 6.5.1.1 allows remote attackers to obtain sensitive information via a direct request for cron/php/subscriptions.php, which reveals the path in an error message.

[CLOSE] OSVDB ID : 32321 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple direct static code injection vulnerabilities in Groupee UBB.threads 6.5.1.1 allow remote attackers to (1) inject PHP code via a theme[] array parameter to admin/doedittheme.php, which is injected into includes/theme.inc.php; (2) inject PHP code via a config[] array parameter to admin/doeditconfig.php, and then execute the code via includes/config.inc.php; and inject a reference to PHP code via a URL in the config[path] parameter, and then execute the code via (3) dorateuser.php, (4) calendar.php, and unspecified other scripts.

[CLOSE] OSVDB ID : 32322 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple direct static code injection vulnerabilities in Groupee UBB.threads 6.5.1.1 allow remote attackers to (1) inject PHP code via a theme[] array parameter to admin/doedittheme.php, which is injected into includes/theme.inc.php; (2) inject PHP code via a config[] array parameter to admin/doeditconfig.php, and then execute the code via includes/config.inc.php; and inject a reference to PHP code via a URL in the config[path] parameter, and then execute the code via (3) dorateuser.php, (4) calendar.php, and unspecified other scripts.

[CLOSE] OSVDB ID : 32325 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ubbt.inc.php in Groupee UBB.threads 6.5.1.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) GLOBALS[thispath] or (2) GLOBALS[configdir] parameter.

[CLOSE] OSVDB ID : 29458 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Mercury SiteScope 8.2 (8.1.2.0) allow remote authenticated users to inject arbitrary web script or HTML via (1) "any field create name field" except "create new group name" or (2) any description field.

[CLOSE] OSVDB ID : 29459 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Mercury SiteScope 8.2 (8.1.2.0) allow remote authenticated users to inject arbitrary web script or HTML via (1) "any field create name field" except "create new group name" or (2) any description field.

[CLOSE] OSVDB ID : 29413 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 29414 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 29415 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 29416 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 29417 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 29418 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 29419 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

[CLOSE] OSVDB ID : 37969 - Disclosed: 2006-09-29

Description:

Open Geo Targeting contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'script.php' script not properly sanitizing user input supplied to the 'anp_path' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 29420 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in core/pdf.php in VideoDB 2.2.1 and earlier allows remote attackers to execute arbitrary PHP code via the config[pdf_module] parameter.

[CLOSE] OSVDB ID : 29312 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

[CLOSE] OSVDB ID : 29452 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Bartels Schoene ConPresso before 4.0.5a allow remote attackers to inject arbitrary web script or HTML via (1) the nr parameter in detail.php, (2) the msg parameter in db_mysql.inc.php, and (3) the pos parameter in index.php.

[CLOSE] OSVDB ID : 29453 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Bartels Schoene ConPresso before 4.0.5a allow remote attackers to inject arbitrary web script or HTML via (1) the nr parameter in detail.php, (2) the msg parameter in db_mysql.inc.php, and (3) the pos parameter in index.php.

[CLOSE] OSVDB ID : 29454 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Bartels Schoene ConPresso before 4.0.5a allow remote attackers to inject arbitrary web script or HTML via (1) the nr parameter in detail.php, (2) the msg parameter in db_mysql.inc.php, and (3) the pos parameter in index.php.

[CLOSE] OSVDB ID : 29455 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in Bartels Schoene ConPresso before 4.0.5a allows remote attackers to execute arbitrary SQL commands via the nr parameter.

[CLOSE] OSVDB ID : 29293 - Disclosed: 2006-09-29

Description:

TagIt! Tagboard contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to index.php not properly sanitizing user input supplied to the 'page' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 29485 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in modules/Downloads/admin.php in the Admin section of PostNuke 0.762 allows remote attackers to execute arbitrary SQL commands via the hits parameter.

[CLOSE] OSVDB ID : 29290 - Disclosed: 2006-09-29

Description:

PHProjekt contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is triggered because the input supplied to 'lib_path' and 'lang_path' variables is not properly verified. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 29432 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Buffer overflow in NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to execute arbitrary code via "the signature field of NTLM Type 1 messages".

[CLOSE] OSVDB ID : 29433 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to (1) execute arbitrary code via unspecified vectors involving crafted base64 encoded NTLM Type 3 messages, or (2) cause a denial of service via crafted base64 encoded NTLM Type 1 messages, which trigger a buffer over-read.

[CLOSE] OSVDB ID : 29434 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to (1) execute arbitrary code via unspecified vectors involving crafted base64 encoded NTLM Type 3 messages, or (2) cause a denial of service via crafted base64 encoded NTLM Type 1 messages, which trigger a buffer over-read.

[CLOSE] OSVDB ID : 29989 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via (1) a DCM image that is not properly handled by the ReadDCMImage function in coders/dcm.c, or (2) a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c.

[CLOSE] OSVDB ID : 29284 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the IP Address Lookup functionality in BSQ Sitestats (component for Joomla) 1.8.0, and possibly other versions before 2.2.1, allows remote attackers to inject arbitrary web script and HTML via the ip parameter.

[CLOSE] OSVDB ID : 29285 - Disclosed: 2006-09-29

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in BSQ Sitestats (component for Joomla) 1.8.0, and possibly other versions before 2.2.1, allow remote attackers to execute arbitrary SQL commands via (1) unspecified parameters when importing the (a) ip-to-country.csv file; and the (2) HTTP Referer, (3) HTTP User Agent, and (4) HTTP Accept Language headers to (b) bsqtemplateinc.php.