Total
29763 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-3478 | 1 Phpcafe | 1 Tutorial Manager | 2025-04-03 | N/A |
| SQL injection vulnerability in index.php in PHPCafe.net Tutorials Manager 1.0 Beta 2 allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||||
| CVE-2005-3479 | 1 Ringtail | 1 Casebook | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in login.asp in Ringtail CaseBook 6.1.0 allows remote attackers to inject arbitrary web script or HTML via the users parameter. | ||||
| CVE-2005-3480 | 1 Ringtail | 1 Casebook | 2025-04-03 | N/A |
| login.asp in Ringtail CaseBook 6.1.0 displays different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernames. | ||||
| CVE-2005-3502 | 1 Cerberus | 1 Cerberus Helpdesk | 2025-04-03 | N/A |
| attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter. | ||||
| CVE-2005-3504 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly execute arbitrary code. | ||||
| CVE-2005-3505 | 1 Cpanel | 1 Cpanel | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in the Entropy Chat script in cPanel 10.2.0-R82 and 10.6.0-R137 allows remote attackers to inject arbitrary web script or HTML via a chat message containing Javascript in style attributes in tags such as <b>, which are processed by Internet Explorer. | ||||
| CVE-2005-3506 | 1 Sambar | 1 Sambar Server | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in proxy.asp in Sambar Server 6.3 BETA 2 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the (1) Remote Proxy Server or (2) Proxy Filter IPs field. | ||||
| CVE-2005-3507 | 1 Cutephp | 1 Cutenews | 2025-04-03 | N/A |
| Directory traversal vulnerability in CuteNews 1.4.1 allows remote attackers to include arbitrary files, execute code, and gain privileges via "../" sequences in the template parameter to (1) show_archives.php and (2) show_news.php. | ||||
| CVE-2005-3508 | 1 Galerie | 1 Galerie | 2025-04-03 | N/A |
| SQL injection vulnerability in showGallery.php in Gallery (Galerie) 2.4 allows remote attackers to execute arbitrary SQL commands via the galid parameter. | ||||
| CVE-2005-3531 | 1 Miklos Szeredi | 1 Fuse | 2025-04-03 | N/A |
| fusermount in FUSE before 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose name contains certain special characters. | ||||
| CVE-2005-3533 | 1 Osh | 1 Osh | 2025-04-03 | N/A |
| Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename. | ||||
| CVE-2005-3535 | 1 Ketm | 1 Ketm | 2025-04-03 | N/A |
| Buffer overflow in KETM 0.0.6 allows local users to execute arbitrary code via unknown vectors. | ||||
| CVE-2005-3536 | 1 Phpbb Group | 1 Phpbb | 2025-04-03 | N/A |
| SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type. | ||||
| CVE-2005-3537 | 1 Phpbb Group | 1 Phpbb | 2025-04-03 | N/A |
| A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs. | ||||
| CVE-2005-3564 | 1 Hp | 1 Hp-ux | 2025-04-03 | N/A |
| envd daemon in HP-UX B.11.00 through B.11.11 allows local users to obtain privileges via unknown attack vectors. | ||||
| CVE-2005-3572 | 1 Peel | 1 Peel | 2025-04-03 | N/A |
| SQL injection vulnerability in index.php in Peel 2.6 through 2.7 allows remote attackers to execute arbitrary SQL commands via the rubid parameter. | ||||
| CVE-2005-3573 | 2 Gnu, Redhat | 2 Mailman, Enterprise Linux | 2025-04-03 | N/A |
| Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service (application crash). | ||||
| CVE-2005-3574 | 1 Icms Content Management Systems | 1 Icms | 2025-04-03 | N/A |
| PHP file inclusion vulnerability in index.php of iCMS allows remote attackers to include arbitrary files via the page parameter. | ||||
| CVE-2005-3576 | 1 Walla Telesite | 1 Walla Telesite | 2025-04-03 | N/A |
| ts.exe in Walla TeleSite 3.0 and earlier allows remote attackers to access privileged information by entering the article number in tsurl parameter. | ||||
| CVE-2005-3577 | 1 Walla Telesite | 1 Walla Telesite | 2025-04-03 | N/A |
| Cross-site scripting vulnerability (XSS) in ts.exe (aka ts.cgi) in Walla TeleSite 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the sug parameter. | ||||