Multiple PHP remote file inclusion vulnerabilities in Security Images (com_securityimages) component 3.0.5 and earlier for Joomla! allow remote attackers to execute arbitrary code via a URL in the mosConfig_absolute_path parameter in (1) configinsert.php, (2)...
Unspecified vulnerability in rsgallery2.html.php in RS Gallery2 component (com_rsgallery2) before 1.11.3 for Joomla! allows attackers to execute arbitrary code. Date published : 2006-09-27 http://rsgallery2.net/component/option,com_rsgallery2/Itemid,7/page,viewChangelog/
Unspecified vulnerability in RS Gallery2 (com_rsgallery2) 1.11.3 and earlier for Joomla! has unspecified impact and attack vectors, related to lack of "hardened language files." Date published : 2006-09-27 http://forum.joomla.org/index.php/topic,73453.0.html http://forum.joomla.org/index.php/topic,79477.0.html
Unspecified vulnerability in PollXT component (com_pollxt) 1.22.07 and earlier for Joomla! has unspecified impact and attack vectors, probably related to PHP remote file inclusion in the mosConfig_absolute_path to conf.pollxt.php. Date published : 2006-09-27 http://www.securityfocus.com/bid/19037...
Unspecified vulnerability in Prince Clan (Princeclan) Chess component (com_pcchess) 0.8 and earlier for Mambo and Joomla! has unspecified impact and attack vectors. Date published : 2006-09-27 http://forum.joomla.org/index.php/topic,79477.0.html http://www.princeclan.org
Multiple PHP remote file inclusion vulnerabilities in the Joomlaboard Forum Component (com_joomlaboard) before 1.1.2 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the sbp parameter to (1) file_upload.php...
Unspecified vulnerability in mosMedia (com_mosmedia) 1.0.8 and earlier for Joomla! has unspecified impact and attack vectors. Date published : 2006-09-27 http://forum.joomla.org/index.php/topic,78533.0.html http://forum.joomla.org/index.php/topic,79477.0.html
Unspecified vulnerability in Hot Properties (possibly com_hotproperties) 0.97 and earlier for Joomla! has unspecified impact and attack vectors. Date published : 2006-09-27 http://forum.joomla.org/index.php/topic,79477.0.html
Unspecified vulnerability in SEF404x (com_sef) for Joomla! has unspecified impact and attack vectors. Date published : 2006-09-27 http://forum.joomla.org/index.php/topic,79477.0.html
Unspecified vulnerability in Events 1.3 beta module (com_events) for Joomla! has unspecified impact and attack vectors. Date published : 2006-09-27 http://forum.joomla.org/index.php/topic,79477.0.html http://forum.joomla.org/index.php/topic,80411.0.html
The FiWin SS28S WiFi VoIP SIP/Skype Phone, firmware version 01_02_07, has a hard-coded username and password, which allows remote attackers to gain administrative access via telnet. Date published : 2006-09-27 http://www.securityfocus.com/bid/20154 http://archives.neohapsis.com/archives/fulldisclosure/2006-09/0391.html
** DISPUTED ** MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sq_content_src parameter to access arbitrary sites with the...
** DISPUTED ** MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sq_remote_page_url parameter to access arbitrary sites with the server’s...
Multiple cross-site scripting (XSS) vulnerabilities in Paul Smith Computer Services vCAP 1.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the statusmsg parameter in RegisterPage.cgi or (2) a URI corresponding...