[CLOSE] OSVDB ID : 40076 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in SmallNuke 2.0.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via (1) the user_email parameter and possibly (2) username parameter in a Members action.

[CLOSE] OSVDB ID : 41652 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allow remote attackers to execute arbitrary code via a long string in the (1) second or (2) fourth argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 42767 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : ssh-signer in SSH Tectia Client and Server 5.x before 5.2.4, and 5.3.x before 5.3.6, on Unix and Linux allows local users to gain privileges via unspecified vectors.

[CLOSE] OSVDB ID : 40206 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in EvilBoard 0.1a (Alpha) allows remote attackers to execute arbitrary SQL commands the c parameter.

[CLOSE] OSVDB ID : 40207 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in EvilBoard 0.1a (Alpha) allows remote attackers to inject arbitrary web script or HTML via the c parameter.

[CLOSE] OSVDB ID : 40221 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in admin/index.html in Merak IceWarp Mail Server allows remote attackers to inject arbitrary web script or HTML via the message parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 40383 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : SQL injection vulnerability in soporte_horizontal_w.php in PHP Webquest 2.6 allows remote attackers to execute arbitrary SQL commands via the id_actividad parameter, a different vector than CVE-2007-4920.

[CLOSE] OSVDB ID : 41094 - Disclosed: 2008-01-08

Description:

Zero CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the id variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 41095 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to index.php, or the (2) f or t parameters to forums/index.php.

[CLOSE] OSVDB ID : 41653 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Directory traversal vulnerability in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allows remote attackers to execute arbitrary programs via a ..\ (dot dot backslash) in the second argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 42313 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Absolute path traversal vulnerability in index.php in Sys-Hotel on Line System allows remote attackers to read arbitrary files via an encoded "/" ("%2F") in the file parameter.

[CLOSE] OSVDB ID : 42749 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Layton HelpBox 3.7.1 allow (1) remote attackers to execute arbitrary SQL commands via the sys_request_id parameter to editrequestenduser.asp; and allow remote authenticated users to execute arbitrary SQL commands via (2) the oldpassword parameter to writepwdenduser.asp, and the sys_request_id parameter to (3) changerequeststatus.asp, (4) editrequestuser.asp, (5) requestcommentsuser.asp, and (6) useractions.asp, different vectors than CVE-2004-2551.

[CLOSE] OSVDB ID : 43340 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg.

[CLOSE] OSVDB ID : 43435 - Disclosed: 2008-01-08

Description:

(Description Provided by CVE) : Sun JRE 5.0 before update 14 allows remote attackers to cause a denial of service (Internet Explorer crash) via an object tag with an encoded applet and an undefined name attribute, which triggers a NULL pointer dereference in jpiexp32.dll when the applet is decoded and passed to the JVM.

[CLOSE] OSVDB ID : 58140 - Disclosed: 2008-01-08

Description:

A remote overflow exists in xtacacsd. xtacacsd fails to check bounds on the report() function resulting in a buffer overflow. With a specially crafted CONNECT TACACS request, an attacker can cause execute arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 40202 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Directory traversal vulnerability in the _get_file_path function in (1) lib/sessions.py in CherryPy 3.0.x up to 3.0.2, (2) filter/sessionfilter.py in CherryPy 2.1, and (3) filter/sessionfilter.py in CherryPy 2.x allows remote attackers to create or delete arbitrary files, and possibly read and write portions of arbitrary files, via a crafted session id in a cookie.

[CLOSE] OSVDB ID : 51057 - Disclosed: 2008-01-07

Description:

OneCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the a_login.php script not properly sanitizing user-supplied input to the usernameb parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51058 - Disclosed: 2008-01-07

Description:

OneCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the staff.php script not properly sanitizing user-supplied input to the user parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 40217 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Shareaza before 2.3.1.0 have unknown impact and attack vectors related to "very important security fixes," possibly involving update notifications and a domain that is no longer controlled by the vendor.

[CLOSE] OSVDB ID : 43074 - Disclosed: 2008-01-07

Description:

TCP Port 5679

[CLOSE] OSVDB ID : 40106 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : The NantSys device 5.0.0.115 in Motorola netOctopus 5.1.2 build 1011 has weak permissions for the \\.\NantSys device interface (nantsys.sys), which allows local users to gain privileges or cause a denial of service (system crash), as demonstrated by modifying the SYSENTER_EIP_MSR CPU Model Specific Register (MSR) value.

[CLOSE] OSVDB ID : 39995 - Disclosed: 2008-01-07

Description:

ZENworks Endpoint Security Management contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a local user places a trojaned shell in a directory where dynamic scripts are generated during the generation of a diagnostic report by the application.

[CLOSE] OSVDB ID : 43305 - Disclosed: 2008-01-07

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 46252 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to execute SQL commands and read table information via the id parameter.

[CLOSE] OSVDB ID : 46253 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to inject arbitrary web script or HTML via the userfield parameter.

[CLOSE] OSVDB ID : 40906 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.

[CLOSE] OSVDB ID : 40905 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.

[CLOSE] OSVDB ID : 40904 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges.

[CLOSE] OSVDB ID : 40903 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.

[CLOSE] OSVDB ID : 40902 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.

[CLOSE] OSVDB ID : 42743 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.

[CLOSE] OSVDB ID : 42030 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port (631/udp), related to an unspecified manipulation of a remote printer. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 42744 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : TUTOS 1.3 allows remote attackers to read system information via a direct request to php/admin/phpinfo.php, which calls the phpinfo function.

[CLOSE] OSVDB ID : 40105 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in apply.cgi in the Linksys WRT54GL Wireless-G Broadband Router with firmware 4.30.9 allows remote attackers to perform actions as administrators.

[CLOSE] OSVDB ID : 50224 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Unspecified vulnerability in Small Footprint CIM Broker (SFCB) before 1.2.5 has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 39981 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Default.asp in RapidShare Database allows remote attackers to inject arbitrary web script or HTML via the Arayalim parameter.

[CLOSE] OSVDB ID : 40068 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to inject arbitrary web script or HTML via the MAIL parameter.

[CLOSE] OSVDB ID : 40078 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in FlexBB 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the flexbb_temp_id parameter in a cookie.

[CLOSE] OSVDB ID : 40208 - Disclosed: 2008-01-07

Description:

(Description Provided by CVE) : Buffer overflow in JustSystems JSFC.DLL, as used in multiple JustSystems products such as Ichitaro, allows remote attackers to execute arbitrary code via a crafted .JTD file.

[CLOSE] OSVDB ID : 40209 - Disclosed: 2008-01-07

Description:

eggBlog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the eggblogpassword cookie. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.