[CLOSE] OSVDB ID : 37484 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allow remote attackers to execute arbitrary code via the (1) uuid_from_char or (2) duve_get_args functions.

[CLOSE] OSVDB ID : 37485 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : wakeup in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allows local users to truncate arbitrary files via a symlink attack on the alarmwkp.def file.

[CLOSE] OSVDB ID : 37486 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (formerly Computer Associates) products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server Process (iigcc), which calls the (1) QUinsert or (2) QUremove functions with attacker-controlled input.

[CLOSE] OSVDB ID : 37674 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : The NCTAudioEditor2 ActiveX control in NCTWMAFile2.dll 2.6.2.157, as distributed in NCTAudioEditor and NCTAudioStudio 2.7, allows remote attackers to overwrite arbitrary files via the CreateFile method.

[CLOSE] OSVDB ID : 45385 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in upload.php in dreamLog (aka dreamblog) 0.5 allows remote attackers to upload and execute arbitrary PHP code in uploads/images/ via the uploadedFile[] parameter.

[CLOSE] OSVDB ID : 89717 - Disclosed: 2007-06-25

Description:

Libxml2 contains a flaw in xmlschemas.c that may allow a denial of service. The issue is triggered when handling a malformed xsd:schema root element. With a specially crafted element, a context-dependent attacker can cause the program to crash.

[CLOSE] OSVDB ID : 44708 - Disclosed: 2007-06-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 40163 - Disclosed: 2007-06-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 34274 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in admin.php in MyNews 0.10, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the authacc cookie.

[CLOSE] OSVDB ID : 35373 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Calendarix 0.7.20070307, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters to calendar.php and the (3) search string to cal_search.php.

[CLOSE] OSVDB ID : 35694 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Calendarix 0.7.20070307, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters to calendar.php and the (3) search string to cal_search.php.

[CLOSE] OSVDB ID : 35695 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Calendarix 0.7.20070307, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) year and (2) month parameters to calendar.php, and the (3) leftfooter parameter to cal_footer.inc.php. NOTE: the ycyear parameter to yearcal.php is already covered by CVE-2006-1835.

[CLOSE] OSVDB ID : 35696 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Calendarix 0.7.20070307, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) year and (2) month parameters to calendar.php, and the (3) leftfooter parameter to cal_footer.inc.php. NOTE: the ycyear parameter to yearcal.php is already covered by CVE-2006-1835.

[CLOSE] OSVDB ID : 35697 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via (1) an invalid month[] parameter to calendar.php, (2) an invalid catview[] parameter to cal_week.php in a week operation, (3) an invalid ycyear[] parameter to yearcal.php, or (4) a direct request to cal_functions.inc.php, which reveals the installation path in various error messages.

[CLOSE] OSVDB ID : 35698 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via (1) an invalid month[] parameter to calendar.php, (2) an invalid catview[] parameter to cal_week.php in a week operation, (3) an invalid ycyear[] parameter to yearcal.php, or (4) a direct request to cal_functions.inc.php, which reveals the installation path in various error messages.

[CLOSE] OSVDB ID : 35699 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via (1) an invalid month[] parameter to calendar.php, (2) an invalid catview[] parameter to cal_week.php in a week operation, (3) an invalid ycyear[] parameter to yearcal.php, or (4) a direct request to cal_functions.inc.php, which reveals the installation path in various error messages.

[CLOSE] OSVDB ID : 36291 - Disclosed: 2007-06-25

Description:

b1gBB contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'footer.inc.php' script not properly sanitizing user input supplied to the 'tfooter' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 36292 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in essentials/minutes/doc.php in eDocStore allows remote attackers to execute arbitrary SQL commands via the doc_id parameter in an inline action.

[CLOSE] OSVDB ID : 37012 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in member.php in 6ALBlog allows remote attackers to execute arbitrary SQL commands via the newsid parameter.

[CLOSE] OSVDB ID : 37013 - Disclosed: 2007-06-25

Description:

6ALBlog contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'admin/index.php' script not properly sanitizing user input supplied to the 'pg' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 37529 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in defter_yaz.asp in Lebisoft zdefter 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) ad and (2) konu parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 38205 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in BugMall Shopping Cart 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the msgs parameter. NOTE: 4.0.2 and other versions might also be affected.

[CLOSE] OSVDB ID : 38223 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in BugMall Shopping Cart 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the "basic search box." NOTE: 4.0.2 and other versions might also be affected.

[CLOSE] OSVDB ID : 38225 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in pagetool 1.07 allows remote attackers to execute arbitrary SQL commands via the news_id parameter in a pagetool_news action.

[CLOSE] OSVDB ID : 38229 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in include/get_userdata.php in Power Phlogger (PPhlogger) 2.2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.php.

[CLOSE] OSVDB ID : 38603 - Disclosed: 2007-06-25

Description:

(Description Provided by CVE) : Directory traversal vulnerability in ShowImage.php in SiteDepth CMS 3.44 allows remote attackers to read arbitrary files via a .. (dot dot) in the name parameter.

[CLOSE] OSVDB ID : 45426 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in signup.php in e107 0.7.8 and earlier, when photograph upload is enabled, allows remote attackers to upload and execute arbitrary PHP code via a filename with a double extension such as .php.jpg.

[CLOSE] OSVDB ID : 40882 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : Stack-based buffer overflow in bookmark handling in Apple Safari 3 Beta before Update 3.0.3 on Windows allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a bookmark with a long title.

[CLOSE] OSVDB ID : 37474 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to include arbitrary local files via the lang parameter, a different vector and version than CVE-2007-1076.2.

[CLOSE] OSVDB ID : 37475 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

[CLOSE] OSVDB ID : 37476 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the pageid parameter in a stats action.

[CLOSE] OSVDB ID : 36293 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in Simple Invoices 2007 05 25 allows remote attackers to execute arbitrary SQL commands via the submit parameter in an email action.

[CLOSE] OSVDB ID : 36302 - Disclosed: 2007-06-24

Description:

Dagger contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'cal.func.php' script not properly sanitizing user input supplied to the 'dir_edge_lang' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 37578 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : index.php in Pharmacy System 2 and earlier allows remote attackers to obtain sensitive information via a ' (quote) character in the page parameter, which reveals the table prefix in an error message.

[CLOSE] OSVDB ID : 38224 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in Pharmacy System 2 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter in an add action.

[CLOSE] OSVDB ID : 38890 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in admin/auth.php in Pluxml 0.3.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

[CLOSE] OSVDB ID : 42420 - Disclosed: 2007-06-24

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in admin/images.php in Pluxml 0.3.1 allows remote attackers to upload and execute arbitrary PHP code via a .jpg filename.

[CLOSE] OSVDB ID : 37294 - Disclosed: 2007-06-23

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in (1) wp-app.php and (2) app.php in WordPress 2.2.1 and WordPress MU 1.2.3 allows remote authenticated users to upload and execute arbitrary PHP code via unspecified vectors, possibly related to the wp_postmeta table and the use of custom fields in normal (non-attachment) posts. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-3543.

[CLOSE] OSVDB ID : 37295 - Disclosed: 2007-06-23

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in WordPress before 2.2.1 and WordPress MU before 1.2.3 allows remote authenticated users to upload and execute arbitrary PHP code by making a post that specifies a .php filename in the _wp_attached_file metadata field; and then sending this file's content, along with its post_ID value, to (1) wp-app.php or (2) app.php.

[CLOSE] OSVDB ID : 37482 - Disclosed: 2007-06-23

Description:

The ActiveX component of the RKD Barcode Application is prone to an overflow condition. The ActiveX BarCodeAx.dll Control fails to properly sanitize user-supplied input resulting in a stack overflow within the BeginPrint() method. With a specially crafted request, a remote attacker can potentially execute arbitrary code.