Cross-site scripting (XSS) vulnerability in login.asp in SiteEnable 3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the ret_page parameter. Date published : 2005-12-22 http://www.securityfocus.com/bid/16009 http://pridels0.blogspot.com/2005/12/siteenable-xss-vuln.html
Cross-site scripting (XSS) vulnerability in login.asp in PortalApp 3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the ret_page parameter. Date published : 2005-12-22 http://www.securityfocus.com/bid/16008 http://pridels0.blogspot.com/2005/12/portalapp-xss-vuln.html
** DISPUTED ** Cross-site scripting (XSS) vulnerability in Polopoly 9 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters. NOTE: the vendor has disputed this vulnerability, stating...
Cross-site scripting (XSS) vulnerability in Plexcor CMS 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters. Date published : 2005-12-22 http://www.securityfocus.com/bid/16006 http://pridels0.blogspot.com/2005/12/plexcors-cms-xss-vuln.html
SQL injection vulnerability in article.php in phpSlash 0.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the story_id parameter. Date published : 2005-12-22 http://www.securityfocus.com/bid/16021 http://pridels0.blogspot.com/2005/12/phpslash-sql-vuln.html
Multiple SQL injection vulnerabilities in Papoo 2.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the (2) forumid and (3)...
Cross-site scripting (XSS) vulnerability in papaya CMS 4.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the bab[searchfor] parameter. Date published : 2005-12-22 http://www.securityfocus.com/bid/16005 http://pridels0.blogspot.com/2005/12/papaya-cms-xss-vuln.html
Cross-site scripting (XSS) vulnerability in store/search/results.html in OpenEdit 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) oe-action and (2) page parameters. Date published : 2005-12-22 http://www.securityfocus.com/bid/16004...
Cross-site scripting (XSS) vulnerability in OpenCms 6.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters. Date published : 2005-12-22 http://www.securityfocus.com/bid/16003 http://pridels0.blogspot.com/2005/12/opencms-xss-vuln.html
Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service (memory exhaustion and panic) by creating a large number of connected file descriptors or socketpairs and setting a large data transfer...
udev does not properly set permissions on certain files in /dev/input, which allows local users to obtain sensitive data that is entered at the console, such as user passwords. Date published : 2005-12-22 http://www.securityfocus.com/bid/15994...
A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs. Date published : 2005-12-22 http://www.securityfocus.com/bid/15246 http://www.debian.org/security/2005/dsa-925
SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type. Date published : 2005-12-22 http://www.securityfocus.com/bid/15246 http://www.debian.org/security/2005/dsa-925
Buffer overflow in the Network Block Device (nbd) server 2.7.5 and earlier, and 2.8.0 through 2.8.2, allows remote attackers to execute arbitrary code via a large request, which is written past the end of...