 |
|
|
|
| IA eMailServer IMAP format string vulnerability | | Published: |  | 27.06.2005 | | Source: |  | FULL-DISCLOSURE | | SecurityVulns ID: |  | 4935 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | IMAP mail server LIST command format strinb vulnerability. |
| PHP calendar functions buffer overflow | | Published: | | 27.06.2005 | | Source: | | FULL-DISCLOSURE | | SecurityVulns ID: | | 4933 | | Type: | | library | | Level: | | 6/10 | | Description: | | Buffer overflow in calendar functions, e.g. JDToGregorian() on large integer. |
| TCP-IP Datalook socket sniffer buffer overflow | | Published: | | 27.06.2005 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 4934 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Buffer overflow on malformed request. |
PHP, ASP, CGI web applications security vulnerabilities
updated since 27.06.2005 | | Published: | | 02.07.2005 | | Source: | | | | SecurityVulns ID: | | 4936 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, etc. |
| Original document |  | Stefan Esser, [Full-disclosure] Advisory 05/2005: Cacti Authentification/Addslashes Bypass Vulnerability (02.07.2005) |
| | | Stefan Esser, [Full-disclosure] Advisory 04/2005: Cacti Remote Command Execution Vulnerability (02.07.2005) |
| | | Stefan Esser, [Full-disclosure] Advisory 03/2005: Cacti Multiple SQL Injection Vulnerabilities [FIXED] (02.07.2005) |
| | | JeiAr, PHPXMLRPC Remote Code Execution (02.07.2005) |
| | | ghc_(at)_ghc.ru, [SECURITY ALERT] osTicket bugs (02.07.2005) |
| | | JeiAr, PEAR XML_RPC Remote Code Execution Vulnerability (01.07.2005) |
| | | SECUNIA, [SA15884] phpPgAds XML-RPC PHP Code Execution Vulnerability (01.07.2005) |
| | | SECUNIA, [SA15895] Nucleus XML-RPC PHP Code Execution Vulnerability (01.07.2005) |
| | | SECUNIA, [SA15883] phpAdsNew XML-RPC PHP Code Execution Vulnerability (01.07.2005) |
| | | Christopher Kunz, Advisory 02/2005: Remote code execution in Serendipity (01.07.2005) |
| | | SECUNIA, [SA15810] phpMyFAQ XML-RPC PHP Code Execution Vulnerability (01.07.2005) |
| | | SECUNIA, [SA15862] Serendipity XML-RPC Unspecified PHP Code Execution Vulnerability (01.07.2005) |
| | | SECUNIA, [SA15819] NateOn Messenger Directory Listing Disclosure Vulnerability (30.06.2005) |
| | | SECUNIA, [SA15864] Comdev News Publisher Cross-Site Scripting and PHP Code Execution (30.06.2005) |
| | | SECUNIA, [SA15865] Comdev eCommerce Review Script Insertion Vulnerability (30.06.2005) |
| | | SECUNIA, [SA15873] Pavsta Auto Site "sitepath" File Inclusion Vulnerability (30.06.2005) |
| | | SECUNIA, [SA15861] PEAR XML_RPC Unspecified PHP Code Execution Vulnerability (30.06.2005) |
| | | SECUNIA, [SA15855] PostNuke XML-RPC Library PHP Code Execution Vulnerability (30.06.2005) |
| | | SECUNIA, [SA15852] XML-RPC for PHP Unspecified PHP Code Execution Vulnerability (30.06.2005) |
| | | Uwe Hermann, [Full-disclosure] [DRUPAL-SA-2005-003] Drupal 4.6.2 / 4.5.4 fixes critical XML-RPC issue (30.06.2005) |
| | | Uwe Hermann, [Full-disclosure] [DRUPAL-SA-2005-002] Drupal 4.6.2 / 4.5.4 fixes input validation issue (30.06.2005) |
| | | JeiAr, WordPress 1.5.1.2 && Earlier Multiple Vulnerabilities (30.06.2005) |
| | | blahplok_(at)_yahoo.com, Original imTRBBS(ver1.02) and prior remote command execution (30.06.2005) |
| | | mozako, [badroot security] Community link pro web editor: Remote command Execution (30.06.2005) |
| | | Christopher Kunz, Advisory 02/2005: Remote code execution in Serendipity (30.06.2005) |
| | | SECURITEAM, [EXPL] PHP-Fusion Accessible Database Backups Download (Exploit) (30.06.2005) |
| | | SECURITEAM, [EXPL] phpBB Remote PHP Code Execution (viewtopic.php 2) (30.06.2005) |
| | | JeiAr, XOOPS 2.0.11 && Earlier Multiple Vulnerabilities (30.06.2005) |
| | | Andrew Farmer, Re: [Full-disclosure] Security Advisory - phpBB 2.0.15 PHP-code injection bug (29.06.2005) |
| | | ronvdaal, Security Advisory - phpBB 2.0.15 PHP-code injection bug (29.06.2005) |
| | | SECUNIA, [SA15854] Plans "evt_id" SQL Injection Vulnerability (29.06.2005) |
| | | abducter_minds_(at)_yahoo.com, XSS IN Community forum (28.06.2005) |
| | | PHPBB, phpBB 2.0.16 released (28.06.2005) |
| | | ActionSpider_(at)_linuxmail.org, Cross-Site Scripting (CSS) in Hosting Controller All Version and hot fix it hehe ;) (28.06.2005) |
| | | SECUNIA, [SA15842] CSV_DB / i_DB Arbitrary Command Execution Vulnerability (28.06.2005) |
| | | SECUNIA, [SA15818] Dynamic Biz Website Builder Admin Login SQL Injection (28.06.2005) |
| | | SECUNIA, [SA15832] Sukru Alatas Guestbook Exposure of User Credentials (28.06.2005) |
| | | Pot Kettle Industries, [Full-disclosure] multihtml exploit vulnerability advisory (28.06.2005) |
| | | Alberto Trivero, M4DR007-07SA (security advisory): Multiple vulnerabilities in ASP Nuke 0.80 (28.06.2005) |
| | | shervin khaleghjou, aspnuke is vulnerable to sql injection (28.06.2005) |
| | | patr0n, Php инъекция в Form Mail Script (28.06.2005) |
| | | SECUNIA, [SA15830] PHP-Fusion Two Vulnerabilities (27.06.2005) |
| | | SECUNIA, [SA15788] WebCalendar "assistant_edit.php" Security Bypass (27.06.2005) |
| | | SECURITEAM, [EXPL] ASPNuke SQL Injection Vulnerability (Exploit) (27.06.2005) |
|
|
|
|
|
|
|
|
