SQL injection vulnerability in index.php in PHP Scripts Now Hangman allows remote attackers to execute arbitrary SQL commands via the n parameter. Date published : 2009-08-20 http://packetstormsecurity.org/0907-exploits/tophangman-sqlxss.txt http://www.osvdb.org/56075
Cross-site scripting (XSS) vulnerability in bios.php in PHP Scripts Now President Bios allows remote attackers to inject arbitrary web script or HTML via the rank parameter. Date published : 2009-08-20 http://packetstormsecurity.org/0907-exploits/presidentbios-sqlxss.txt http://secunia.com/advisories/35935
SQL injection vulnerability in bios.php in PHP Scripts Now President Bios allows remote attackers to execute arbitrary SQL commands via the rank parameter. Date published : 2009-08-20 http://packetstormsecurity.org/0907-exploits/presidentbios-sqlxss.txt http://secunia.com/advisories/35935
SQL injection vulnerability in bios.php in PHP Scripts Now World’s Tallest Buildings allows remote attackers to execute arbitrary SQL commands via the rank parameter. Date published : 2009-08-20 http://packetstormsecurity.org/0907-exploits/tallestbuildings-sql.txt http://www.osvdb.org/56121
Cross-site scripting (XSS) vulnerability in bios.php in PHP Scripts Now World’s Tallest Buildings allows remote attackers to inject arbitrary web script or HTML via the rank parameter. Date published : 2009-08-20 http://packetstormsecurity.org/0907-exploits/tallestbuildings-sql.txt http://www.osvdb.org/56122
SQL injection vulnerability in admin/login.php in SaphpLesson 4.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cp_username parameter, related to an error in the CleanVar function in includes/functions.php....
Multiple cross-site scripting (XSS) vulnerabilities in PG MatchMaking allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) browse_ladies.php and (2) browse_men.php, the (3) gender parameter to search.php,...
Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote attackers to execute arbitrary SQL commands via the idAuthor parameter to (1) index.php and possibly (2) allpubs.php in publications/. Date published : 2009-08-20 http://www.exploit-db.com/exploits/9246 http://www.vupen.com/english/advisories/2009/2005
The checkHTTPpassword function in http.c in ntop 3.3.10 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an Authorization HTTP header that lacks a :...
The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) before 2.5.9 and Adium 1.3.5 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (memory...
The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of...
Unreal engine 3, as used in Unreal Tournament 3 1.3, Frontlines: Fuel of War 1.1.1, and other products, allows remote attackers to cause a denial of service (server exit) via a packet with a...
fhttpd 0.4.2 allows remote attackers to cause a denial of service (crash) via an Authorization HTTP header with an invalid character after the Basic value. Date published : 2009-08-19 http://www.securityfocus.com/bid/31265 https://www.exploit-db.com/exploits/6493
NetService.dll in Baidu Hi IM allows remote servers to cause a denial of service (client crash) via a crafted login response that triggers a divide-by-zero error. Date published : 2009-08-19 http://www.securityfocus.com/archive/1/496353/100/0/threaded http://osvdb.org/51697