Searching modifying software vulnerabilities

The locking feature in mIRC 5.7 allows local us

LockOptions | mechanism | modifying | password | registry | feature | locking | allows | bypass | local | users | mIRC | key |

The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key.


FormMail.pl in FormMail 1.6 and earlier allows

FormMailpl | anonymous | attacker | FormMail | earlier | allows | remote | email | send |

FormMail.pl in FormMail 1.6 and earlier allows a remote attacker to send anonymous email (spam) by modifying the recipient and message parameters.


xman allows local users to gain privileges by m

metacharacters | privileges | modifying | contains | filename | MANPATH | allows | whose | local | shell | users | point | xman | gain | page | man |

xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters.


FTP service in Alcatel OmniPCX 4400 allows the

Alcatel | OmniPCX | service | FTP |

FTP service in Alcatel OmniPCX 4400 allows the "halt" user to gain root privileges by modifying root's .profile file.


ASP-Nuke RC2 and earlier allows remote attacker

authentication | privileges | modifying | attackers | ASP-Nuke | "pseudo" | earlier | cookie | remote | allows | bypass | gain | RC2 |

ASP-Nuke RC2 and earlier allows remote attackers to bypass authentication and gain privileges by modifying the "pseudo" cookie.


user_profile.asp in PortalApp 2.2 allows local

user_profileasp | privileges | modifying | PortalApp | variable | user_id | allows | local | users | gain |

user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable.


LokwaBB 1.2.2 allows remote attackers to read a

LokwaBB |

LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php.


WebCalendar allows remote attackers to gain pri

WebCalendar | privileges | parameters | modifying | attackers | critical | allows | remote | gain |

WebCalendar allows remote attackers to gain privileges by modifying critical parameters to (1) view_entry.php or (2) upcoming.php.


delpm.php in PBLang 4.63 allows remote authenti

delpmphp | PBLang |

delpm.php in PBLang 4.63 allows remote authenticated users to delete arbitrary PM files by modifying the "id" and "a" parameters.


index.php for Zorum 3.5 allows remote attackers

modifying | attackers | parameter | indexphp | certain | actions | perform | allows | remote | Zorum | other | users |

index.php for Zorum 3.5 allows remote attackers to perform certain actions as other users by modifying the id parameter.


owOfflineCC.asp in OneWorldStore allows remote

owOfflineCCasp | OneWorldStore | information | modifying | sensitive | parameter | attackers | idOrder | allows | remote | obtain |

owOfflineCC.asp in OneWorldStore allows remote attackers to obtain sensitive information by modifying the idOrder parameter.


phpcart.php in PHPCart 3.2 allows remote attack

information | phpcartphp | attackers | modifying | product | PHPCart | allows | remote | change | price |

phpcart.php in PHPCart 3.2 allows remote attackers to change product price information by modifying the (1) price or (2) postage parameters.


ArticleLive 2005 allows remote attackers to gai

ArticleLive |

ArticleLive 2005 allows remote attackers to gain privileges by modifying the (1) auth and (2) userId fields in a cookie.


delcomment.php in myBloggie 2.1.1 allows remote

delcommentphp | myBloggie |

delcomment.php in myBloggie 2.1.1 allows remote attackers to delete arbitrary comments by modifying the comment_id parameter.


message.htm for Woppoware PostMaster 4.2.2 (bui

PostMaster | messagehtm | Woppoware |

message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to bypass authentication by modifying the email parameter.


The saveProfile function in PhpSlash 0.8.0 allo

saveProfile | PhpSlash | function |

The saveProfile function in PhpSlash 0.8.0 allows remote attackers to modify arbitrary profiles and gain privileges by modifying the author_id parameter.


management.php in Realnode Emilda 1.2.2 and ear

managementphp | Realnode | Emilda |

management.php in Realnode Emilda 1.2.2 and earlier allows remote attackers to perform actions as other users by modifying the user_id parameter.


login.php in PCXP/TOPPE CMS allows remote attac

authentication | privileges | PCXP/TOPPE | attackers | modifying | loginphp | userid | cookie | target | allows | bypass | remote | match | gain | CMS |

login.php in PCXP/TOPPE CMS allows remote attackers to bypass authentication and gain privileges by modifying the cookie to match the target userid.


forum_post.php in e107 0.6 allows remote attack

forum_postphp | non-existent | attackers | modifying | forums | number | allows | remote | forum | e107 | post |

forum_post.php in e107 0.6 allows remote attackers to post to non-existent forums by modifying the forum number.


Ar-blog 5.2 and earlier allows remote attackers

authentication | attackers | modifying | earlier | Ar-blog | cookies | remote | allows | bypass |

Ar-blog 5.2 and earlier allows remote attackers to bypass authentication by modifying cookies.


Software vulnerabilities results 1 to 20 of 270     
Page: 12345...14