CVE List

Id CVE No. Status Description Phase Votes Comments Actions
10569  CVE-2004-2143  Candidate  SQL injection vulnerability in the ReMOSitory Server add-on module to Mambo Portal 4.5.1 (1.09) and earlier allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in the com_remository option.  Assigned (20050630)  None (candidate not yet proposed)    View
13287  CVE-2005-2081  Candidate  Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the "write = command" option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character.  Assigned (20050630)  None (candidate not yet proposed)    View
13288  CVE-2005-2082  Candidate  im_trbbs.cgi in imTRSET 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the df parameter.  Assigned (20050630)  None (candidate not yet proposed)    View
13289  CVE-2005-2083  Candidate  Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument.  Assigned (20050630)  None (candidate not yet proposed)    View
13290  CVE-2005-2084  Candidate  Cross-site scripting (XSS) vulnerability in SearchResults.aspx in Community Forum allows remote attackers to inject arbitrary web script or HTML via the q parameter.  Assigned (20050630)  None (candidate not yet proposed)    View

Page 19184 of 20943, showing 5 records out of 104715 total, starting on record 95916, ending on 95920

Actions