Searching rc1 software vulnerabilities

Cross-site scripting vulnerability in functions

functions-incasp | vulnerability | Cross-site | attackers | embedding | scripting | ASP-Nuke | execute | within | script | allows | remote | other | users | tag | IMG | RC1 |

Cross-site scripting vulnerability in functions-inc.asp for ASP-Nuke RC1 allows remote attackers to execute script as other ASP-Nuke users by embedding it within an IMG tag.


Buffer overflow in Netscape 6 and Mozilla 1.0 R

attackers | Netscape | overflow | earlier | service | Mozilla | Buffer | denial | allows | remote | cause | RC1 |

Buffer overflow in Netscape 6 and Mozilla 1.0 RC1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long channel name in an IRC URI.


SQL injection vulnerability in SquirrelMail bef

vulnerability | SquirrelMail | injection | before | SQL |

SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.


phpScheduleIt 1.0.0 RC1 does not clear administ

phpScheduleIt |

phpScheduleIt 1.0.0 RC1 does not clear administrative privileges if the administrator logs in as a normal user, which allows users with physical access to gain administrative privileges.


Cross-site scripting (XSS) vulnerability in sea

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in search.php for FreznoShop 1.3.0 RC1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.


Chatman 1.1.1 RC1 and earlier allows remote att

Chatman |

Chatman 1.1.1 RC1 and earlier allows remote attackers to cause a denial of service (memory consumption or application crash) via a very large data size.


Bodington 2.1.0 RC1 and earlier does not secure

Bodington |

Bodington 2.1.0 RC1 and earlier does not secure the file upload area, which allows remote attackers to read uploaded files.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allow remote attackers to inject arbitrary web script.


Cross-site request forgery (CSRF) vulnerability

Cross-site | forgery | request |

Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to perform unauthorized actions as authenticated MediaWiki users.


Directory traversal vulnerability in MediaWiki

vulnerability | MediaWiki | Directory | traversal | before | 13x |

Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion.


Cross-site scripting (XSS) vulnerability in YaB

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in YaBB.pl for YaBB 2.0 RC1 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a usersrecentposts action.


Cross-site scripting (XSS) vulnerability in use

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in usersrecentposts in YaBB 2.0 rc1 allows remote attackers to inject arbitrary web script or HTML via the username parameter.


H-Sphere Winbox 2.4.2 and 2.4.3 RC1 stores sens

H-Sphere | Winbox |

H-Sphere Winbox 2.4.2 and 2.4.3 RC1 stores sensitive information such as username and password in plaintext in world-readable log files, which allows local users to gain privileges.


Cross-site scripting (XSS) vulnerability in ind

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in index.php in VUBB alpha rc1 allows remote attackers to inject arbitrary web script or HTML via the t parameter in a newreply action.


index.php in VUBB alpha rc1 allows remote attac

installation | application | attackers | parameter | viewforum | indexphp | single | action | remote | allows | obtain | quote | alpha | path | VUBB | rc1 | via | set |

index.php in VUBB alpha rc1 allows remote attackers to obtain the installation path of the application via a viewforum action with the f parameter set to a single quote (').


The register_globals emulation in phpMyAdmin 2.

register_globals | phpMyAdmin | emulation |

The register_globals emulation in phpMyAdmin 2.7.0 rc1 allows remote attackers to exploit other vulnerabilities in phpMyAdmin by modifying the import_blacklist variable in grab_globals.php, which can then be used to overwrite other variables.


Cross-site scripting (XSS) vulnerability in Sco

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in Scoop 1.1 RC1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) type and (2) count parameters, and (3) the query string in a story.


Multiple SQL injection vulnerabilities in VUBB

vulnerabilities | attackers | injection | arbitrary | commands | Multiple | execute | remote | alpha | allow | VUBB | via | SQL | rc1 |

Multiple SQL injection vulnerabilities in VUBB alpha rc1 allow remote attackers to execute arbitrary SQL commands via the (1) f parameter to viewforum.php, (2) t parameter to viewtopic.php, and (3) view parameter to usercp.php.


Cross-site scripting (XSS) vulnerability in VUB

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in VUBB alpha rc1 allows remote attackers to inject arbitrary web script or HTML via unspecified fields in the user edit profile.


SQL injection vulnerability in UseBB 1.0 RC1 an

vulnerability | attackers | arbitrary | injection | commands | execute | earlier | search | member | module | remote | allows | UseBB | list | RC1 | SQL | via |

SQL injection vulnerability in UseBB 1.0 RC1 and earlier allows remote attackers to execute arbitrary SQL commands via the member list search module.


Software vulnerabilities results 1 to 20 of 53     
Page: 123