Multiple cross-site scripting (XSS) vulnerabilities in register.php in Tritanium Bulletin Board (TBB) 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) newuser_realname and (2) newuser_icq parameters, a different vector...
NetBSD 1.6, 2.0, 2.1 and 3.0 allows local users to cause a denial of service (memory exhaustion) by using the sysctl system call to lock a large buffer into physical memory. Date published :...
Directory traversal vulnerability in index.php in phpWebFTP 3.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the language parameter. Date published : 2006-04-18 http://www.securityfocus.com/bid/17557 http://www.securityfocus.com/archive/1/431115/100/0/threaded
phpWebFTP 3.2 and earlier stores script.js under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information. Date published : 2006-04-18 http://www.securityfocus.com/bid/17557 http://www.securityfocus.com/archive/1/431115/100/0/threaded
Multiple SQL injection vulnerabilities in FlexBB 0.5.5 BETA allow remote attackers to execute arbitrary SQL commands via the (1) id, (2) forumid, or (3) threadid parameter to index.php; the (4) ICQ, (5) AIM, (6)...
Multiple cross-site scripting (XSS) vulnerabilities in FlexBB 0.5.5 BETA allow remote attackers to inject arbitrary web script or HTML via the (1) ICQ, (2) AIM, (3) MSN, (4) Google Talk, (5) Website Name, (6)...
index.php in Lifetype 1.0.3 allows remote attackers to obtain sensitive information via an invalid show parameter, which reveals the path in an error message. Date published : 2006-04-18 http://www.securityfocus.com/archive/1/431008/100/0/threaded http://securitytracker.com/id?1015941
Cross-site scripting (XSS) vulnerability in index.php in Lifetype 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the show parameter in a Template operation. Date published : 2006-04-18 http://www.securityfocus.com/bid/17529 http://www.securityfocus.com/archive/1/431008/100/0/threaded
Multiple SQL injection vulnerabilities in index.php in Musicbox 2.3.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) start parameter in a search action or (2) type parameter in a...
Cross-site scripting (XSS) vulnerability in index.php in Musicbox 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the term parameter in a search action. Date published : 2006-04-18 http://www.securityfocus.com/bid/17545...
SQL injection vulnerability in member.php in PowerClan 1.14 allows remote attackers to execute arbitrary SQL commands via the memberid parameter. Date published : 2006-04-18 http://www.securityfocus.com/bid/17528 http://www.securityfocus.com/archive/1/431005/100/0/threaded
SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to execute arbitrary SQL commands via the sql_query parameter. Date published : 2006-04-18 http://www.securityfocus.com/archive/1/431013/100/0/threaded http://secunia.com/advisories/19659
Cross-site scripting (XSS) vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to inject arbitrary web script or HTML via the sql_query parameter. Date published : 2006-04-18 http://www.securityfocus.com/bid/17487 http://www.securityfocus.com/archive/1/430902/100/0/threaded
Cross-site scripting (XSS) vulnerability in index.php in TinyWebGallery 1.3 and 1.4 allows remote attackers to inject arbitrary web script or HTML via the twg_album parameter. Date published : 2006-04-18 http://www.securityfocus.com/bid/17536 http://www.securityfocus.com/archive/1/431069/100/0/threaded