| OSVDB ID | Disclosure Date | Title |
|---|
|
64159
Description:
(Description Provided by CVE) : Stack-based buffer overflow in Internet Download Manager (IDM) before 5.19 allows remote attackers to execute arbitrary code via a crafted FTP URI that causes unspecified "test sequences" to be sent from client to server.
|
2010-04-30
|
Internet Download Manager FTP Unspecified Test Sequence Overflow
|
|
79461
Description:
Electronics Corporation of India (ECIL) EVM contains a flaw related to the final ballot positions of candidates being somewhat predictable. This allows an attacker to make an educated guess of how some key numbers will be assigned. Combined with malicious software installed on the system, this may allow altering the results of an election contrary to claims made by the Election Commission.
|
2010-04-30
|
Electronics Corporation of India (ECIL) EVM Random Candidate Ordering Weakness
|
|
79462
Description:
Electronics Corporation of India (ECIL) EVM contains a flaw related to the ease of which hardware components can be tampered with, and missing integrity checks associated with such activity. The issue is triggered when an attacker with physical access replaces hardware components (e.g. the display) and may allow misrepresenting or manipulating vote totals.
|
2010-04-30
|
Electronics Corporation of India (ECIL) EVM Multiple Hardware Component Integrity Checking Weakness
|
|
64158
Description:
Unknown / Incomplete
|
2010-04-30
|
deV!L'z Clanportal thumbgen.php img Parameter Arbitrary Image File Access
|
|
64218
Description:
JobPost contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'type.asp' script not properly sanitizing user-supplied input to the 'iType' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-30
|
JobPost type.asp iType Parameter SQL Injection
|
|
64217
Description:
(Description Provided by CVE) : KrM Haber 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for d_atabase/Krmdb.mdb.
|
2010-04-30
|
KrM Haber d_atabase/Krmdb.mdb Direct Request Database Disclosure
|
|
64443
Description:
Newsfeeds Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'feedid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-30
|
Newsfeeds Component for Joomla! index.php feedid SQL Injection
|
|
64444
Description:
EC21 Clone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'offers_buy.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-30
|
EC21 Clone offers_buy.php id Parameter SQL Injection
|
|
64445
Description:
Alibaba Clone Platinum contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'offers_buy.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-30
|
Alibaba Clone Platinum offers_buy.php id Parameter SQL Injection
|
|
64549
Description:
(Description Provided by CVE) : Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact via keyctl session commands that trigger access to a dead keyring that is undergoing deletion by the key_cleanup function.
|
2010-04-30
|
Linux Kernel security/keys/keyring.c find_keyring_by_name Function Race Condition Local DoS
|
|
65024
Description:
Unknown / Incomplete
|
2010-04-30
|
Microsoft Access Backslash Escaped Input SQL Injection Protection Bypass
|
|
65019
Description:
Unknown / Incomplete
|
2010-04-30
|
Mango search Function term Parameter XSS
|
|
65023
Description:
Puntal contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input supplied to the 'app_path=' OR 'puntal_path=' parameters. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-04-30
|
Puntal index.php Multiple Parameter Remote File Inclusion
|
|
64433
Description:
Unknown / Incomplete
|
2010-04-29
|
vBulletin BB Code Tag XSS
|
|
65840
Description:
iScripts VisualCaster contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'playVideo.php' script not properly sanitizing user-supplied input to the 'product_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-29
|
iScripts VisualCaster playVideo.php product_id Parameter SQL Injection
|
|
64135
Description:
Unknown / Incomplete
|
2010-04-29
|
iScripts SocialWare includes/profile_save_widgets.php txtWidgets Parameter Arbitrary File Upload
|
|
64136
Description:
Unknown / Incomplete
|
2010-04-29
|
iScripts SocialWare album.php search Parameter XSS
|
|
64130
Description:
gpEasy CMS contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions such as add an administrative user. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.
|
2010-04-29
|
gpEasy CMS Admin User Creation CSRF
|
|
64129
Description:
Video Battle Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'browse.html' script not properly sanitizing user-supplied input to the 'cat' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-29
|
Video Battle Script browse.html cat Parameter SQL Injection
|
|
64128
Description:
Modelbook contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'casting_view.php' script not properly sanitizing user-supplied input to the 'adnum' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-29
|
Modelbook casting_view.php adnum Parameter SQL Injection
|
|
64219
Description:
Scratcher contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'show' parameter upon submission to the 'projects.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-04-29
|
Scratcher projects.php show Parameter XSS
|
|
64220
Description:
Scratcher contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'projects.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-29
|
Scratcher projects.php id Parameter SQL Injection
|
|
64346
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in register.php in Piwigo 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) login and (2) mail_address parameters.
|
2010-04-29
|
Piwigo register.php Multiple Parameter XSS
|
|
64458
Description:
My Little Forum contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'id' and 'back' parameters upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-04-29
|
My Little Forum index.php Multiple Parameter XSS
|
|
64475
Description:
A memory corruption flaw exists in dvipng. The "SetChar" function fails to sanitize user-supplied input when the creator of a dvi file makes it index beyond the end of the array, resulting in memory corruption. With a specially crafted file, a local attacker can execute arbitrary code.
|
2010-04-29
|
Tex Live dvipng set.c Utility Array Indexing Error Memory Corruption
|
|
64447
Description:
Tirzen Framework (TZN) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'tzn_mysql.php' script not properly sanitizing user-supplied input to the 'Username' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for a bypass of authentication.
|
2010-04-29
|
Tirzen Framework (TZN) tzn_mysql.php Username Parameter SQL Injection Authentication Bypass
|
|
64557
Description:
(Description Provided by CVE) : The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data.
|
2010-04-29
|
Linux Kernel net/sctp/sm_make_chunk.c sctp_process_unk_param Function SCTPChunkInit Packet Remote DoS
|
|
65054
Description:
Unknown / Incomplete
|
2010-04-29
|
Apache ActiveMQ Jetty Error Handler XSS
|
|
65051
Description:
(Description Provided by CVE) : The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated by the __VIEWSTATE parameter to 2.0/menu/menu1.aspx in the XSP sample project.
|
2010-04-29
|
Mono ASP.NET EnableViewStateMac Property Default Configuration XSS
|
|
64274
Description:
Unknown / Incomplete
|
2010-04-28
|
NIBE RCU 11 Heat Pump cgi-bin/exec.cgi script Parameter Command Injection
|
|
64139
Description:
Unknown / Incomplete
|
2010-04-28
|
CCMS Gaming sendtofriend.php url Parameter XSS
|
|
64140
Description:
Unknown / Incomplete
|
2010-04-28
|
CCMS Gaming Unspecified Arbitrary File Upload
|
|
64170
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possibly earlier, and SharePoint Services 3.0 SP1 and SP2, versions, allows remote attackers to inject arbitrary web script or HTML via the cid0 parameter.
|
2010-04-28
|
Microsoft SharePoint Server _layouts/help.aspx cid0 Parameter XSS
|
|
65440
Description:
(Description Provided by CVE) : Web Application Finger Printer (WAFP) 0.01-26c3 uses fixed pathnames under /tmp for temporary files and directories, which (1) allows local users to cause a denial of service (application outage) by creating a file with a pathname that the product expects is available for its own internal use, (2) allows local users to overwrite arbitrary files via symlink attacks on certain files in /tmp, (3) might allow local users to delete arbitrary files and directories via a symlink attack on a directory under /tmp, and (4) might make it easier for local users to obtain sensitive information by reading files in a directory under /tmp, related to (a) lib/wafp_pidify.rb, (b) utils/generate_wafp_fingerprint.sh, (c) utils/online_update.sh, and (d) utils/extract_from_db.sh.
|
2010-04-28
|
Web Application Finger Printer (WAFP) Multiple Script Insecure /tmp Handling Issue
|
|
64114
Description:
Acoustica CD/DVD Label Maker is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted M3U file, a remote attacker can potentially cause arbitrary code execution.
|
2010-04-28
|
Acoustica CD/DVD Label Maker .M3U File Handling Overflow
|
|
64133
Description:
Tele Data Contact Management Server contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'Login' script not properly sanitizing user-supplied input to the 'User Name' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-04-28
|
Tele Data Contact Management Server Login User Name Parameter SQL Injection
|
|
64131
Description:
Unknown / Incomplete
|
2010-04-28
|
Decisions Module for Drupal Unspecified Information Disclosure
|
|
64132
Description:
Unknown / Incomplete
|
2010-04-28
|
Privatemsg Module for Drupal pm_email_notify.module Access Restriction Bypass
|
|
64541
Description:
Unknown / Incomplete
|
2010-04-28
|
Maple .maplet File Arbitrary Command Execution
|
|
64842
Description:
(Description Provided by CVE) : arch/powerpc/mm/fsl_booke_mmu.c in KGDB in the Linux kernel 2.6.30 and other versions before 2.6.33, when running on PowerPC, does not properly perform a security check for access to a kernel page, which allows local users to overwrite arbitrary kernel memory, related to Fsl booke.
|
2010-04-28
|
Linux Kernel KGDB arch/powerpc/mm/fsl_booke_mmu.c Kernel Page Access Check Weakness Arbitrary Memory Overwrite
|
