The send-private-message functionality (send-private-message.asp) in PD9 Software MegaBBS 2.1 allows remote attackers to read private messages of other users via a modified replyid parameter. Date published : 2006-01-09 http://www.securityfocus.com/bid/16168 http://www.pd9soft.com/megabbs/forums/thread-view.asp?tid=4924
aMSN (aka Alvaro’s Messenger) allows remote attackers to cause a denial of service (client hang and termination of client’s instant-messaging session) by repeatedly sending crafted data to the default file-transfer port (TCP 6891). Date...
SQL injection vulnerability in linkcategory.php in Phanatic Softwares Chimera Web Portal System 0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2006-01-09 http://www.securityfocus.com/bid/16113 http://www.securityfocus.com/archive/1/420669/100/0/threaded
Multiple cross-site scripting (XSS) vulnerabilities in the guestbook module in modules.php in Phanatic Softwares Chimera Web Portal System 0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) comment_poster, (2)...
SQL injection vulnerability in login.php in TheWebForum (twf) 1.2.1 allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the username parameter (aka the u variable). Date published : 2006-01-09 http://www.securityfocus.com/bid/16161...
Cross-site scripting (XSS) vulnerability in register.php in TheWebForum (twf) 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the www parameter. Date published : 2006-01-09 http://www.securityfocus.com/bid/16161 http://www.securityfocus.com/archive/1/421039/100/0/threaded
Multiple directory traversal vulnerabilities in AIX 5.3 ML03 allow local users to determine the existence of files and read partial contents of certain files via a .. (dot dot) in the argument to (1)...
Directory traversal vulnerability in webftp.php in SysCP WebFTP 1.2.6 and possibly earlier allows remote attackers to include and execute arbitrary local PHP scripts, and possibly read other types of files, via a .. (dot...
boastMachine 3.1 allows remote attackers to obtain sensitive information via a direct request to (1) footer.php and (2) side_menu.php, which reveals the path in an error message. Date published : 2006-01-09 http://www.securityfocus.com/archive/1/420969/100/0/threaded http://echo.or.id/adv/adv26-K-159-2006.txt
Mail Management Agent (MAILMA) (aka Mail Management Server) in Rockliffe MailSite 7.0.3.1 and earlier allows remote attackers to attempt authentication with an unlimited number of user account names and passwords without denying connections, limiting...
Mail Management Agent (MAILMA) (aka Mail Management Server) in Rockliffe MailSite 7.0.3.1 and earlier generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames...
Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown impact via unknown attack vectors. Date published : 2006-01-09 http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/040969.html http://zur.homelinux.com/Advisories/RockliffeMailsiteDirTransveral.txt
Directory traversal vulnerability in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote authenticated users to rename the folders of other users via a .. (dot dot) in the RENAME command. Date published...
rxvt-unicode before 6.3, on certain platforms that use openpty and non-Unix pty devices such as Linux and most BSD platforms, does not maintain the intended permissions of tty devices, which allows local users to...