9532, 2591 Security Vulnerabilities
PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plug_path...
7.9AI Score
0.066EPSS
PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plug_path...
7.5AI Score
0.066EPSS
PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plug_path...
7.5AI Score
0.066EPSS
7.4AI Score
EPSS
SQL injection vulnerability in annonces-p-f.php in MyAds module 2.04jp for Xoops allows remote attackers to execute arbitrary SQL commands via the lid...
8.4AI Score
0.006EPSS
SQL injection vulnerability in annonces-p-f.php in MyAds module 2.04jp for Xoops allows remote attackers to execute arbitrary SQL commands via the lid...
8.3AI Score
0.006EPSS
SQL injection vulnerability in annonces-p-f.php in MyAds module 2.04jp for Xoops allows remote attackers to execute arbitrary SQL commands via the lid...
8.3AI Score
0.006EPSS
e107 email.php Arbitrary Mail Relay
The version of e107 installed on the remote host contains a script, 'email.php' that allows an unauthenticated user to send email messages to arbitrary users and to control, to a large degree, the content of those messages. This issue can be exploited to send spam or other types of abuse through...
7AI Score
0.003EPSS
Unspecified vulnerability in e107 before 0.7.5 has unknown impact and remote attack vectors related to an "emailing...
6.8AI Score
0.003EPSS
Unspecified vulnerability in e107 before 0.7.5 has unknown impact and remote attack vectors related to an "emailing...
6.4AI Score
0.003EPSS
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-2591. Reason: This candidate is a duplicate of CVE-2006-2591. Notes: All CVE users should reference CVE-2006-2591 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...
6.4AI Score
0.003EPSS
Unspecified vulnerability in e107 before 0.7.5 has unknown impact and remote attack vectors related to an "emailing...
6.5AI Score
0.003EPSS
Unspecified vulnerability in e107 before 0.7.5 has unknown impact and remote attack vectors related to an "emailing...
6.4AI Score
0.003EPSS
[SA18845] GnuPG "gpgv" Signature Verification Security Issue
TITLE: GnuPG "gpgv" Signature Verification Security Issue SECUNIA ADVISORY ID: SA18845 VERIFY ADVISORY: http://secunia.com/advisories/18845/ CRITICAL: Less critical IMPACT: Security Bypass WHERE: >From remote SOFTWARE: GnuPG / gpg 1.4.x http://secunia.com/product/8087/ GnuPG / gpg 1.0.x...
0.2AI Score
The data-overwrite capability of ButtUglySoftware CleanCache 2.19 does not properly overwrite data in files, which allows attackers to recover the...
6.8AI Score
0.001EPSS
The data-overwrite capability of ButtUglySoftware CleanCache 2.19 does not properly overwrite data in files, which allows attackers to recover the...
6.4AI Score
0.001EPSS
SQL injection vulnerability in product_cat in AgileBill 1.4.92 and earlier allows remote attackers to execute arbitrary SQL commands via the id...
8.4AI Score
0.008EPSS
SQL injection vulnerability in product_cat in AgileBill 1.4.92 and earlier allows remote attackers to execute arbitrary SQL commands via the id...
8.8AI Score
0.008EPSS
SQL injection vulnerability in product_cat in AgileBill 1.4.92 and earlier allows remote attackers to execute arbitrary SQL commands via the id...
8.4AI Score
0.008EPSS
Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks,...
1.7AI Score
[SA16489] Emefa Guestbook Script Insertion Vulnerability
Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secunia_vacancies/ TITLE: Emefa Guestbook Script Insertion Vulnerability SECUNIA ADVISORY ID: SA16489 VERIFY ADVISORY:...
0.5AI Score
Parlano MindAlign 5.0 and later versions allows remote attackers to list valid users via unknown vectors, aka the "User Enumeration"...
7.1AI Score
0.01EPSS
Parlano MindAlign 5.0 and later versions allows remote attackers to list valid users via unknown vectors, aka the "User Enumeration"...
6.7AI Score
0.01EPSS
Parlano MindAlign 5.0 and later versions allows remote attackers to list valid users via unknown vectors, aka the "User Enumeration"...
6.7AI Score
0.01EPSS
ChatterBox 2.0 allows remote attackers to cause a denial of service (server crash) via a malformed request to the server, as demonstrated using...
7AI Score
0.025EPSS
ChatterBox 2.0 allows remote attackers to cause a denial of service (server crash) via a malformed request to the server, as demonstrated using...
6.6AI Score
0.025EPSS
ngIRCd < 0.8.3 Log_Resolver() Remote Format String Overflow
The remote host is running a version of the ngIRCd service that may be vulnerable to a buffer overflow in the way the server handles user-supplied data which is passed to...
3.3AI Score
ChatterBox 2.0 allows remote attackers to cause a denial of service (server crash) via a malformed request to the server, as demonstrated using...
6.6AI Score
0.025EPSS
The data-overwrite capability of ButtUglySoftware CleanCache 2.19 does not properly overwrite data in files, which allows attackers to recover the...
6.4AI Score
0.001EPSS
Multiple Vulnerabilities in Name Service Daemon (nsd) on IRIX
-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Multiple Vulnerabilities in Name Service Daemon (nsd) Number : 20030701-01-P Date : July 16, 2003 Reference: CVE CAN-2003-0176, CAN-2003-0177, CAN-2003-0572, CAN-2003-0573 Reference: SGI BUGS 844401,...
-0.1AI Score
0.003EPSS
SRT2003-06-12-1212 - FakeBO syslog() format string issue.
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection...
-0.1AI Score
3.4AI Score
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users...
6.4AI Score
0.006EPSS
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users...
6.4AI Score
0.006EPSS
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users...
6.4AI Score
0.006EPSS
SNMP Request Cisco Router Information Disclosure
It is possible to determine the model of the remote CISCO system by sending SNMP requests with the OID 1.3.6.1.4.1.9.1. An attacker may use this information to gain more knowledge about the remote...
7.1AI Score
1.4AI Score
Endymion SakeMail and MailMan File Disclosure Vulnerability
Product: SakeMail - Webmailsystem (http://www.endymion.com) Problem Description: due to missing input-validation it is possible to read xml/other files with sakemails permissions read THIS (javanullbyte.html) for additional infos on nullbytes and java-classes! Example: a HTTP-request to:...
0.8AI Score
-0.2AI Score
Security Update for Microsoft Outlook 2010 (KB4022205) 64-Bit Edition
A security vulnerability exists in Microsoft Outlook 2010 64-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that...
3.2AI Score
Update for Windows Server 2003 (KB2633952)
Install this update to resolve issues caused by revised daylight saving time and time zone laws in several countries. This update enables your computer to automatically adjust the computer clock on the correct date in 2012. After you install this item, you may have to restart your...
2.1AI Score
Internet Explorer 8 for Windows Server 2003 x64 Edition
Internet Explorer 8 is the latest version of the familiar Web browser that you are most comfortable using. Internet Explorer 8 helps you get everything that you want from the Web faster, easier, and more privately and securely than ever. After you install this item, you may have to restart your...
3.1AI Score
2019-01 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB4480975)
A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article.....
6.7AI Score
Security Update for Windows XP (KB944338)
A security issue has been identified in VBScript and Jscript that could allow an attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart...
2AI Score
Update for WEPOS and POSReady 2009 (KB3148851)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your...
2AI Score
Security Update for Outlook Express 5.5 for Windows 2000 (KB973354)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your...
2.9AI Score
Security Update for Windows Server 2003 (KB3039066)
A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article.....
1.7AI Score
2023-11 Servicing Stack Update for Windows Server 2012 R2 for x64-based Systems (KB5032308)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your...
7.1AI Score
Security Update for Microsoft Excel 2010 (KB3017810) 64-Bit Edition
A security vulnerability exists in Microsoft Excel 2010 64-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that...
3.3AI Score
Windows Malicious Software Removal Tool x64 - v5.125 (KB890830)
After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you...
7.1AI Score