Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2005-0817 | 1 Symantec | 4 Enterprise Firewall, Gateway Security 5300, Gateway Security 5400 and 1 more | 2017-07-10 | 5.0 MEDIUM | N/A |
| Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote attackers to poison the DNS cache and redirect users to malicious sites. | |||||
| CVE-2005-0818 | 1 Punbb | 1 Punbb | 2017-07-10 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in PunBB 1.2.3 allows remote attackers to inject arbitrary web script or HTML via the (1) email or (2) Jabber parameters. | |||||
| CVE-2005-0821 | 1 Citrix | 1 Metaframe Conferencing Manager | 2017-07-10 | 7.5 HIGH | N/A |
| Unknown vulnerability in Citrix MetaFrame Conferencing Manager 3.0 allows conference members to bypass organizer restrictions to control the keyboard and mouse. | |||||
| CVE-2005-0823 | 1 Thepoolclub | 2 Ipool, Isnooker | 2017-07-10 | 4.6 MEDIUM | N/A |
| ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges. | |||||
| CVE-2005-0826 | 1 Ollydbg | 1 Ollydbg | 2017-07-10 | 5.0 MEDIUM | N/A |
| OllyDbg 1.10 and earlier allows remote attackers to cause a denial of service (application crash) via a dynamic link library (DLL) with a long filename. | |||||
| CVE-2005-0882 | 1 Birdblog | 1 Birdblog | 2017-07-10 | 7.5 HIGH | N/A |
| SQL injection vulnerability in admincore.php in BirdBlog before 1.2.0 allows remote attackers to execute arbitrary SQL commands via the (1) userid or (2) userpw parameters. | |||||
| CVE-2005-0883 | 1 Digitalhive | 1 Digitalhive | 2017-07-10 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the mt parameter to the membres.php page or (2) the -afs-1- query string to the msg.php page. | |||||
| CVE-2005-0884 | 1 Digitalhive | 1 Digitalhive | 2017-07-10 | 7.5 HIGH | N/A |
| DigitalHive 2.0 allows remote attackers to re-install the product by directly accessing the install script. | |||||
| CVE-2005-0887 | 1 Michael Dean | 1 Double Choco Latte | 2017-07-10 | 7.5 HIGH | N/A |
| Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into an eval statement. | |||||
| CVE-2005-0888 | 1 Michael Dean | 1 Double Choco Latte | 2017-07-10 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the (1) class or (2) method name. | |||||
| CVE-2005-0904 | 1 Microsoft | 1 Windows Xp | 2017-07-10 | 2.1 LOW | N/A |
| Remote Desktop in Windows XP SP1 does not verify the "Force shutdown from a remote system" setting, which allows remote attackers to shut down the system by executing TSShutdn.exe. | |||||
| CVE-2005-0913 | 1 Smarty | 1 Smarty | 2017-07-10 | 7.5 HIGH | N/A |
| Unknown vulnerability in the regex_replace modifier (modifier.regex_replace.php) in Smarty before 2.6.8 allows attackers to execute arbitrary PHP code. | |||||
| CVE-2005-0919 | 1 Adventia | 2 Adventia Chat, Adventia Server Pro | 2017-07-10 | 4.3 MEDIUM | N/A |
| Adventia Chat 3.1 and Server Pro 3.0 allows remote attackers to inject arbitrary web script or HTML into the chat space, which leaves other users vulnerable to cross-site scripting (XSS) attacks. | |||||
| CVE-2005-0924 | 1 Adventia | 1 E-data | 2017-07-10 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Adventia E-Data 2.0 allows remote attackers to inject arbitrary web script or HTML via a query keyword. | |||||
| CVE-2005-0942 | 1 Sybase | 1 Adaptive Server Enterprise | 2017-07-10 | 5.0 MEDIUM | N/A |
| The XP Server process (xp_server) in Sybase Adaptive Server Enterprise (ASE) XP Server 12.x before 12.5.3 ESD#1 allows attackers to cause a denial of service (process crash) via malformed data sent to the XP Server TCP port. | |||||
| CVE-2005-0945 | 1 Asp Press | 1 Acs Blog | 2017-07-10 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in ACS Blog 1.1.1 allows remote attackers to inject arbitrary web script or HTML via onmouseover or onload events in (1) img, (2) link, or (3) mail tags. | |||||
| CVE-2005-0947 | 1 Coinsoft Technologies | 1 Phpcoin | 2017-07-10 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in auxpage.php in phpCoin 1.2.1b and earlier allows remote attackers to read and execute arbitrary files via a .. (dot dot) in the page parameter. | |||||
| CVE-2005-0948 | 1 Iatek | 1 Portalapp | 2017-07-10 | 7.5 HIGH | N/A |
| SQL injection vulnerability in ad_click.asp for PortalApp allows remote attackers to execute arbitrary SQL commands via the banner_id parameter. | |||||
| CVE-2005-0949 | 1 Iatek | 1 Portalapp | 2017-07-10 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in content.asp in Iatek PortalApp allow remote attackers to inject arbitrary web script or HTML via the (1) contenttype or (2) keywords parameter. | |||||
| CVE-2005-0950 | 1 Faststone | 1 4in1 Browser | 2017-07-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in FastStone 4in1 Browser 1.2 allows remote attackers to read arbitrary files via a (1) ... (triple dot) or (2) ..\ (dot dot backslash) in the URL. | |||||