Search:Vulnerability:16.10.2004 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Yak! directory traversal
Published: 16.10.2004
Source: BUGTRAQ
SecurityVulns ID: 4100
Type: remote
Level: 5/10
Description: Directory traversal in built-in FTP server.

Affected: DIGICRAFT : Yak! 2.1

Original document Luigi Auriemma, Directory traversal in Yak! 2.1.2 (16.10.2004)

Discuss: Read or add your comments to this news (0 comments)

VERITAS Cluster Server privilege escalation
Published: 16.10.2004
Source: BUGTRAQ
SecurityVulns ID: 4101
Type: local
Level: 6/10

Affected: VERITAS : Cluster Server 4.0

Original document SECUNIA, [SA12833] VERITAS Cluster Server Unspecified System Compromise Vulnerability (16.10.2004)

Discuss: Read or add your comments to this news (0 comments)

CGI bugs
updated since 11.10.2004
Published: 16.10.2004
Source:
SecurityVulns ID: 4078
Type: remote
Level: 5/10

Affected: ICEWARP : IceWarp Web Mail 5.2
PINNACLE : ShowCenter 1.51
MEDIAWIKI : MediaWiki 1.3
CJOVERKILL : CJOverkill 4.0
TURBOTRAFFICTRAD : Turbo Traffic Trader Nitro 1.0
GOSMART4U : GoSmart Message Board
ZANFI : ZanfiCmsLite 1.1
OCPORTAL : ocPortal 1.0
SCT : Fusetalk SCT Campus Pipeline
FUSETALK : fusetalk 4.0
THEPEAK : Thepeak File Upload 1.3
PHPMYADMIN : phpMyAdmin 2.6
IDEALBB : Ideal BB 1.5
NATTERCHAT : Natterchat 1.12
WEHELPBUS : WeHelpBUS 0.1
EXPRESSWEB : Express-Web Content Management System
ALIVESITES : AliveSites Forum 2.0
WOWBB : WowBB 1.61
CEBERSTRONG : CyberStrong eShop 4.6
DMXREADY : Site Chassis Manager
DEVOYBB : DevoyBB 1.0

Original document DEVOYBB, [SA12840] DevoyBB Unspecified Cross-Site Scripting and SQL Injection Vulnerabilities (16.10.2004)

SECUNIA, [SA12841] Dmxready Site Chassis Manager Unspecified Cross-Site Scripting and SQL Injection (16.10.2004)

SECUNIA, [SA12842] CyberStrong eShop ASP Shopping Card Unspecified Cross-Site Scripting (16.10.2004)

document SECUNIA, [SA12843] WowBB Forum Unspecified SQL Injection and Cross-Site Scripting (16.10.2004)

SECUNIA, [SA12844] AliveSites Forum Unspecified Cross-Site Scripting and SQL Injection (16.10.2004)

SECUNIA, [SA12839] Express-Web Content Management System Unspecified Cross-Site Scripting (16.10.2004)

document SECUNIA, [SA12831] WeHelpBUS Arbitrary Command Execution Vulnerability (16.10.2004)

SECUNIA, [SA12834] NatterChat Unspecified SQL Injection Vulnerability (16.10.2004)

SECUNIA, [SA12835] Ideal BB Multiple Unspecified Vulnerabilities (16.10.2004)

SECUNIA, [SA12613] Pinnacle ShowCenter Skin File Cross-Site Scripting Vulnerability (16.10.2004)

document SECUNIA, [SA12825] MediaWiki Multiple Vulnerabilities (16.10.2004)

SECUNIA, [SA12813] phpMyAdmin Unspecified Arbitrary Command Execution Vulnerability (16.10.2004)

bugtraq_(at)_rloxy.com, Clientexec Billing Software (16.10.2004)

keitel andres ortega, a path disclosure and a posibility file inclusion and vulneability in thepeak file upload v1.3 (16.10.2004)

document Matthew Oyer, XXS in fusetalk forum (15.10.2004)

Matthew Oyer, XXS in SCT email client (15.10.2004)

SECUNIA, [SA12789] IceWarp Web Mail Cross-Site Scripting Vulnerabilities (13.10.2004)

Exoduks, [hackgen-2004-#002] - Remote file inclusion bug in ocPortal 1.0.3. (13.10.2004)

document Lin Xiaofeng, Multiple vulnerabilities in ZanfiCmsLite (13.10.2004)

Alexander Antipov, [Full-Disclosure] [MAxpatrol Security Advisory] Multiple vulnerabilities in GoSmart Message Board (11.10.2004)

aCiDBiTS, [Full-Disclosure] Turbo Traffic Trader Nitro v1.0 SQL Injection & XSS Proofs of Concept (11.10.2004)

document aCiDBiTS, [Full-Disclosure] CJOverkill 4.0.3 XSS Proof of Concept (11.10.2004)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server