SQL injection vulnerability in index.php in FreeCMS 0.2 allows remote attackers to execute arbitrary SQL commands via the page parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29773 https://www.exploit-db.com/exploits/5838
Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) or a .....
Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors. Date published : 2008-06-20 http://www.securityfocus.com/bid/29708 http://securityresponse.symantec.com/avcenter/security/Content/2008.06.17.html
SQL injection vulnerability in group_posts.php in ClipShare before 3.0.1 allows remote attackers to execute arbitrary SQL commands via the tid parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29779 https://www.exploit-db.com/exploits/5839
SQL injection vulnerability in index.php in eroCMS 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the site parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29781 https://www.exploit-db.com/exploits/5846
SQL injection vulnerability in product.detail.php in Kalptaru Infotech Comparison Engine Power Script 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29768 https://www.exploit-db.com/exploits/5834
SQL injection vulnerability in detail.php in MountainGrafix easyTrade 2.x allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29775 http://shop.mountaingrafix.at/media/patches/etv_patch_2_3_2.zip
SQL injection vulnerability in pages/index.php in BASIC-CMS allows remote attackers to execute arbitrary SQL commands via the page_id parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29771 https://www.exploit-db.com/exploits/5836
Cross-site scripting (XSS) vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the redirection parameter. Date published : 2008-06-20 http://sourceforge.net/tracker/index.php?func=detail&aid=1975163&group_id=69505&atid=524753 http://secunia.com/advisories/30750
Cross-site scripting (XSS) vulnerability in out.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the last_message parameter. Date published : 2008-06-20 http://www.securityfocus.com/bid/29765 http://www.securityfocus.com/archive/1/493390/100/0/threaded
Buffer overflow in Firefox 3.0 and 2.0.x has unknown impact and attack vectors. NOTE: due to lack of details as of 20080619, it is not clear whether this is the same issue as CVE-2008-2785....
Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird before 2.0.0.16, and SeaMonkey before 1.1.11 use an incorrect integer data type as a CSS object reference counter in the CSSValue array (aka nsCSSValue:Array) data...
The smtp_filter function in spamdyke before 3.1.8 does not filter RCPT commands after encountering the first DATA command, which allows remote attackers to use the server as an open mail relay by sending RCPT...
Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware, Groupware Webmail Edition, and Kronolith allow remote attackers to inject arbitrary web script or HTML via the timestamp parameter to (1) week.php, (2) workweek.php, and (3)...