[CLOSE] OSVDB ID : 43894 - Disclosed: 2008-03-31

Description:

JV2 Folder Gallery contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "image" variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 43909 - Disclosed: 2008-03-31

Description:

JV2 Quick Gallery contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "f" variable upon submission. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 44024 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CuteFlow 1.5.0 and 2.10.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) page/showcirculation.php; and (2) edittemplate_step2.php, (3) showfields.php, (4) showuser.php, (5) editmailinglist_step1.php, and (6) showtemplates.php in pages/.

[CLOSE] OSVDB ID : 43920 - Disclosed: 2008-03-31

Description:

WP-Download Plugin for WordPress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'wp-download.php' script not properly sanitizing user-supplied input to the 'dl_id' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 43956 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : The Macrovision InstallShield InstallScript One-Click Install (OCI) ActiveX control 12.0 before SP2 does not validate the DLL files that are named as parameters to the control, which allows remote attackers to download arbitrary library code onto a client machine.

[CLOSE] OSVDB ID : 43965 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Directory traversal vulnerability in admin/login.php in EasyNews 4.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.

[CLOSE] OSVDB ID : 43966 - Disclosed: 2008-03-31

Description:

EasyNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'dynamicpages/index.php' script not properly sanitizing user-supplied input to the 'read' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 43967 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in staticpages/easypublish/index.php in EasyNews 4.0 allows remote attackers to inject arbitrary web script or HTML via the read parameter in an edp_pupublish action.

[CLOSE] OSVDB ID : 44023 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CuteFlow 1.5.0 and 2.10.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) page/showcirculation.php; and (2) edittemplate_step2.php, (3) showfields.php, (4) showuser.php, (5) editmailinglist_step1.php, and (6) showtemplates.php in pages/.

[CLOSE] OSVDB ID : 44019 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CuteFlow 1.5.0 and 2.10.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) page/showcirculation.php; and (2) edittemplate_step2.php, (3) showfields.php, (4) showuser.php, (5) editmailinglist_step1.php, and (6) showtemplates.php in pages/.

[CLOSE] OSVDB ID : 44020 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CuteFlow 1.5.0 and 2.10.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) page/showcirculation.php; and (2) edittemplate_step2.php, (3) showfields.php, (4) showuser.php, (5) editmailinglist_step1.php, and (6) showtemplates.php in pages/.

[CLOSE] OSVDB ID : 44021 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CuteFlow 1.5.0 and 2.10.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) page/showcirculation.php; and (2) edittemplate_step2.php, (3) showfields.php, (4) showuser.php, (5) editmailinglist_step1.php, and (6) showtemplates.php in pages/.

[CLOSE] OSVDB ID : 44022 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CuteFlow 1.5.0 and 2.10.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) page/showcirculation.php; and (2) edittemplate_step2.php, (3) showfields.php, (4) showuser.php, (5) editmailinglist_step1.php, and (6) showtemplates.php in pages/.

[CLOSE] OSVDB ID : 44025 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : SQL injection vulnerability in login.php in CuteFlow 1.5.0 and 2.10.0 allows remote attackers to execute arbitrary SQL commands via the UserId parameter, related to the login form field in index.php.

[CLOSE] OSVDB ID : 44026 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in CuteFlow 2.10.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) listid parameter to pages/editmailinglist_step1.php, the (2) userid parameter to pages/edituser.php, the (3) fieldid parameter to pages/editfield.php, and the (4) templateid to pages/edittemplate_step1.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 44027 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in CuteFlow 2.10.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) listid parameter to pages/editmailinglist_step1.php, the (2) userid parameter to pages/edituser.php, the (3) fieldid parameter to pages/editfield.php, and the (4) templateid to pages/edittemplate_step1.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 44028 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in CuteFlow 2.10.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) listid parameter to pages/editmailinglist_step1.php, the (2) userid parameter to pages/edituser.php, the (3) fieldid parameter to pages/editfield.php, and the (4) templateid to pages/edittemplate_step1.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 44029 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in CuteFlow 2.10.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) listid parameter to pages/editmailinglist_step1.php, the (2) userid parameter to pages/edituser.php, the (3) fieldid parameter to pages/editfield.php, and the (4) templateid to pages/edittemplate_step1.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 44187 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : The SOAP interface in OTRS 2.1.x before 2.1.8 and 2.2.x before 2.2.6 allows remote attackers to "read and modify objects" via SOAP requests, related to "Missing security checks."

[CLOSE] OSVDB ID : 44207 - Disclosed: 2008-03-31

Description:

Neat weblog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'articleId' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 44209 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote attackers to read arbitrary local files via a .. (dot dot) in the filename parameter.

[CLOSE] OSVDB ID : 44241 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : SQL injection vulnerability in jgs_treffen.php in the JGS-XA JGS-Treffen 2.0.2 and earlier addon for Woltlab Burning Board (wBB) allows remote attackers to execute arbitrary SQL commands via the view_id parameter in an ansicht action.

[CLOSE] OSVDB ID : 43922 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.

[CLOSE] OSVDB ID : 43993 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.

[CLOSE] OSVDB ID : 43994 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.

[CLOSE] OSVDB ID : 43912 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the audit_log_user_command function in lib/audit_logging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 43905 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to (a) algorithmic deficiencies in rand and random functions in external libraries, (b) use of a 32-bit seed value, and (c) choice of the time of day as the sole seeding information.

[CLOSE] OSVDB ID : 44142 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might remove length testing code that was intended as a protection mechanism against integer overflow and buffer overflow attacks.

[CLOSE] OSVDB ID : 43910 - Disclosed: 2008-03-30

Description:

Smoothflash contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin_view_image.php' script not properly sanitizing user-supplied input to the 'cid' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 44201 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter.

[CLOSE] OSVDB ID : 44240 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in view_private.php in Keep It Simple Guest Book (KISGB) 5.0.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tmp_theme parameter. NOTE: 5.1.1 is also reportedly affected.

[CLOSE] OSVDB ID : 44396 - Disclosed: 2008-03-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in includes/functions_weblog.php in mxBB mx_blogs 2.0.0 beta allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.

[CLOSE] OSVDB ID : 43926 - Disclosed: 2008-03-29

Description:

(Description Provided by CVE) : Buffer overflow in InspIRCd before 1.1.18, when using the namesx and uhnames modules, allows remote attackers to cause a denial of service (daemon crash) via a large number of channel users with crafted nicknames, idents, and long hostnames.

[CLOSE] OSVDB ID : 43927 - Disclosed: 2008-03-29

Description:

(Description Provided by CVE) : WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 43928 - Disclosed: 2008-03-29

Description:

(Description Provided by CVE) : Stack consumption vulnerability in WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long request header in an HTTP request to TCP port 801. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 43929 - Disclosed: 2008-03-29

Description:

(Description Provided by CVE) : Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (UDP service outage) via a large packet to UDP port 54. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 43925 - Disclosed: 2008-03-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in 2X TFTP service (TFTPd.exe) 3.2.0.0 and earlier in 2X ThinClientServer 5.0_sp1-r3497 and earlier allows remote attackers to read or overwrite arbitrary files via a ... (dot dot dot) in the filename.

[CLOSE] OSVDB ID : 43908 - Disclosed: 2008-03-29

Description:

phpMyAdmin contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious user accesses session data, which will disclose MySQL username and password information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 43979 - Disclosed: 2008-03-29

Description:

(Description Provided by CVE) : Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.

[CLOSE] OSVDB ID : 44018 - Disclosed: 2008-03-29

Description:

Unknown / Incomplete