[CLOSE] OSVDB ID : 42367 - Disclosed: 2008-02-29

Description:

XRMS CRM contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'msg' variable upon submission to the '/admin/users/self.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 42483 - Disclosed: 2008-02-29

Description:

(Description Provided by CVE) : includes/library.php in netOffice Dwins 1.3 p2 compares the demoSession variable to the 'true' string literal instead of the true boolean literal, which allows remote attackers to bypass authentication and execute arbitrary code by setting this variable to 1, as demonstrated by uploading a PHP script via an add action to projects_site/uploadfile.php.

[CLOSE] OSVDB ID : 42554 - Disclosed: 2008-02-29

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in the Learn2 Corporation STRunner (aka Street Technologies) ActiveX control in iestm32.dll allow remote attackers to execute arbitrary code via unspecified vectors.

[CLOSE] OSVDB ID : 42551 - Disclosed: 2008-02-29

Description:

phpMyTourney contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'tourney/index.php' not properly sanitizing user input supplied to the 'page' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 42704 - Disclosed: 2008-02-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in include/doc/index.php in Centreon 1.4.2.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter, a different vector than CVE-2008-1119.

[CLOSE] OSVDB ID : 43515 - Disclosed: 2008-02-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in Koobi CMS 4.2.3 through 4.3.0 allows remote attackers to execute arbitrary SQL commands via the categ parameter in a links action to index.php, a different vector than CVE-2008-1122.

[CLOSE] OSVDB ID : 42324 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42323 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42330 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42327 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42325 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42326 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42320 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42319 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42318 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42317 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42316 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 43000 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42315 - Disclosed: 2008-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 42356 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : The ipsec4_get_ulp function in the kernel in NetBSD 2.0 through 3.1 and NetBSD-current before 20071028, when the fast_ipsec subsystem is enabled, allows remote attackers to bypass the IPsec policy by sending packets from a source machine with a different endianness than the destination machine, a different vulnerability than CVE-2006-0905.

[CLOSE] OSVDB ID : 42629 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Unspecified vulnerability in the ipsecah kernel module in Sun Solaris 10, when a key management daemon for IPsec security associations is running, allows local users to cause a denial of service (panic) via unspecified vectors.

[CLOSE] OSVDB ID : 43170 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : mod_userdir in lighttpd 1.4.18 and earlier, when userdir.path is not set, uses a default of $HOME, which might allow remote attackers to read arbitrary files, as demonstrated by accessing the ~nobody directory.

[CLOSE] OSVDB ID : 43169 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a fork failure occurs, which might allow remote attackers to obtain sensitive information.

[CLOSE] OSVDB ID : 43040 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote attackers to obtain sensitive information.

[CLOSE] OSVDB ID : 43041 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : ViewVC before 1.0.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to read files and list folders under the hidden CVSROOT folder.

[CLOSE] OSVDB ID : 43042 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : ViewVC before 1.0.5 provides revision metadata without properly checking whether access was intended, which allows remote attackers to obtain sensitive information by reading (1) forbidden pathnames in the revision view, (2) log history that can only be reached by traversing a forbidden object, or (3) forbidden diff view path parameters.

[CLOSE] OSVDB ID : 43043 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : ViewVC before 1.0.5 provides revision metadata without properly checking whether access was intended, which allows remote attackers to obtain sensitive information by reading (1) forbidden pathnames in the revision view, (2) log history that can only be reached by traversing a forbidden object, or (3) forbidden diff view path parameters.

[CLOSE] OSVDB ID : 43044 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : ViewVC before 1.0.5 provides revision metadata without properly checking whether access was intended, which allows remote attackers to obtain sensitive information by reading (1) forbidden pathnames in the revision view, (2) log history that can only be reached by traversing a forbidden object, or (3) forbidden diff view path parameters.

[CLOSE] OSVDB ID : 42292 - Disclosed: 2008-02-28

Description:

Interspire Shopping Cart contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'search_query' variables upon submission to the 'search.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 42301 - Disclosed: 2008-02-28

Description:

Maian Cart contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "keywords" variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 42885 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote authenticated users to execute arbitrary code via format string specifiers in the user name, which is triggered when the game character is killed.

[CLOSE] OSVDB ID : 42549 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Directory traversal vulnerability in include/doc/get_image.php in Centreon 1.4.2.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter.

[CLOSE] OSVDB ID : 42550 - Disclosed: 2008-02-28

Description:

Koobi Pro contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'categ' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 42555 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in SiteBuilder Elite 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the CarpPath parameter to (1) files/carprss.php and (2) files/amazon-bestsellers.php.

[CLOSE] OSVDB ID : 42556 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in SiteBuilder Elite 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the CarpPath parameter to (1) files/carprss.php and (2) files/amazon-bestsellers.php.

[CLOSE] OSVDB ID : 42557 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in Podcast Generator 1.0 BETA 2 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) theme_path parameter to core/themes.php and the (2) filename parameter to download.php.

[CLOSE] OSVDB ID : 42558 - Disclosed: 2008-02-28

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in Podcast Generator 1.0 BETA 2 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) theme_path parameter to core/themes.php and the (2) filename parameter to download.php.

[CLOSE] OSVDB ID : 42559 - Disclosed: 2008-02-28

Description:

Podcast Generator contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'loadparser.php' not properly sanitizing user input supplied to the 'absoluteurl' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 42560 - Disclosed: 2008-02-28

Description:

Podcast Generator contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'admin.php' not properly sanitizing user input supplied to the 'absoluteurl' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 42561 - Disclosed: 2008-02-28

Description:

Podcast Generator contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'categories.php' not properly sanitizing user input supplied to the 'absoluteurl' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.