my software vulnerabilities
vulnerabilities.aspcode.net
Searching my software vulnerabilities
Directory traversal vulnerability in Mike Spice
vulnerability
|
Classifieds
|
Directory
|
traversal
|
Spice's
|
Mike
|
Directory traversal vulnerability in Mike Spice's My Classifieds (classifieds.cgi) before 1.3 allows remote attackers to overwrite arbitrary files via the category parameter.
Directory traversal vulnerability in Mike Spice
vulnerability
|
arbitrary
|
attackers
|
Directory
|
traversal
|
Calendar
|
remote
|
allows
|
before
|
files
|
write
|
Spice
|
Mike
|
via
|
Directory traversal vulnerability in Mike Spice My Calendar before 1.5 allows remote attackers to write arbitrary files via .. (dot dot) sequences in a URL.
Directory traversal vulnerability in magiccard.
vulnerability
|
magiccardcgi
|
arbitrary
|
attackers
|
Postcards
|
traversal
|
Directory
|
Platinum
|
allows
|
remote
|
files
|
read
|
via
|
Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.
Internet Explorer 5.01 SP3 through 6.0 SP1 allo
Explorer
|
Internet
|
Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to access and execute script in the My Computer domain using the browser cache via crafted Content-Type and Content-Disposition headers, aka the "Browser Cache Script Execution in My Computer Zone" vulnerability.
The Smc.exe process in My Firewall Plus 5.0 bui
Firewall
|
process
|
Smcexe
|
build
|
Plus
|
The Smc.exe process in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before invoking help, which allows local users to gain privileges.
account.asp in DUware DUclassmate 1.0 through 1
DUclassmate
|
MM_recordId
|
accountasp
|
arbitrary
|
passwords
|
parameter
|
modifying
|
attackers
|
Account"
|
through
|
DUware
|
allows
|
change
|
remote
|
users
|
page
|
"My
|
account.asp in DUware DUclassmate 1.0 through 1.1 allows remote attackers to change the passwords for arbitrary users by modifying the MM_recordId parameter on the "My Account" page.
modules.php in PHP-Nuke 6.x to 7.6 allows remot
information
|
modulesphp
|
attackers
|
sensitive
|
PHP-Nuke
|
request
|
direct
|
remote
|
allows
|
obtain
|
via
|
modules.php in PHP-Nuke 6.x to 7.6 allows remote attackers to obtain sensitive information via a direct request to (1) my_headlines, (2) userinfo, or (3) search, which reveals the path in a PHP error message.
Format string vulnerability in the my_xlog func
vulnerability
|
function
|
my_xlog
|
Server
|
Format
|
string
|
Proxy
|
libc
|
Oops
|
Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and earlier, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow attackers to execute arbitrary code via a URL.
auction_my_auctions.php in phpbb-Auction 1.2m a
auction_my_auctionsphp
|
phpbb-Auction
|
information
|
attackers
|
sensitive
|
parameter
|
earlier
|
invalid
|
message
|
obtain
|
remote
|
allows
|
which
|
leaks
|
error
|
path
|
full
|
mode
|
PHP
|
12m
|
via
|
auction_my_auctions.php in phpbb-Auction 1.2m and earlier allows remote attackers to obtain sensitive information via an invalid mode parameter, which leaks the full path in a PHP error message.
Fortibus CMS 4.0.0 allows remote attackers to m
Fortibus
|
CMS
|
Fortibus CMS 4.0.0 allows remote attackers to modify information of other users, including Admin, via the "My info" page.
Cross-site scripting (XSS) vulnerability in ind
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in index.php for My Image Gallery (Mig ) 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the (1) currDir or (2) image parameters.
SQL injection vulnerability in search.php in My
vulnerability
|
arbitrary
|
attackers
|
searchphp
|
injection
|
commands
|
execute
|
phrase
|
remote
|
Little
|
allows
|
field
|
Forum
|
beta
|
SQL
|
via
|
SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote attackers to execute arbitrary SQL commands via the phrase field.
Directory traversal vulnerability in My Album O
vulnerability
|
arbitrary
|
attackers
|
traversal
|
Directory
|
access
|
remote
|
Online
|
allows
|
files
|
Album
|
"/"
|
via
|
Directory traversal vulnerability in My Album Online 1.0 allows remote attackers to access arbitrary files via ".../" (triple dot) sequences in unspecified vectors.
Cross-site scripting (XSS) vulnerability in the
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in the bbcode function in functions.php in my little homepage my little forum, as last modified in June 2005, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
Cross-site scripting (XSS) vulnerability in the
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
Cross-site scripting (XSS) vulnerability in web
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the action parameter.
SQL injection vulnerability in user.php in My L
vulnerability
|
attackers
|
arbitrary
|
injection
|
parameter
|
commands
|
userphp
|
execute
|
earlier
|
Little
|
allows
|
remote
|
Forum
|
SQL
|
via
|
SQL injection vulnerability in user.php in My Little Forum 1.7 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
SQL injection vulnerability in diary.php in My
vulnerability
|
arbitrary
|
attackers
|
injection
|
parameter
|
commands
|
diaryphp
|
Databook
|
execute
|
delete
|
allows
|
remote
|
SQL
|
via
|
SQL injection vulnerability in diary.php in My Databook allows remote attackers to execute arbitrary SQL commands via the delete parameter.
Cross-site scripting (XSS) vulnerability in dia
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter.
PHP remote file inclusion vulnerability in logi
vulnerability
|
My_REFERER
|
inclusion
|
loginphp
|
remote
|
file
|
PHP
|
PHP remote file inclusion vulnerability in login.php in My_REFERER 1.08 allows remote attackers to execute arbitrary PHP code via a URL in the value parameter.
Software vulnerabilities results 1 to 20 of 64
Page:
1
2
3
4
►