relationship software vulnerabilities
vulnerabilities.aspcode.net
Searching relationship software vulnerabilities
An unrestricted remote trust relationship for U
/etc/hostsequiv
|
relationship
|
unrestricted
|
systems
|
remote
|
using
|
trust
|
sign
|
Unix
|
been
|
set
|
has
|
An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv.
There is a one-way or two-way trust relationshi
relationship
|
Windows
|
between
|
domains
|
one-way
|
two-way
|
There
|
trust
|
There is a one-way or two-way trust relationship between Windows NT domains.
WebMaster ConferenceRoom 1.8.1 allows remote at
ConferenceRoom
|
WebMaster
|
WebMaster ConferenceRoom 1.8.1 allows remote attackers to cause a denial of service via a buddy relationship between the IRC server and a server clone.
The SSL and TLS components for OpenSSL 0.9.6i a
components
|
OpenSSL
|
earlier
|
096i
|
TLS
|
SSL
|
The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA private key operation via a modified Bleichenbacher attack that uses a large number of SSL or TLS connections using PKCS #1 v1.5 padding that cause OpenSSL to leak information regarding the relationship between ciphertext and the associated plaintext, aka the "Klima-Pokorny-Rosa attack."
PHP remote file inclusion vulnerability in Mant
vulnerability
|
modifying
|
attackers
|
inclusion
|
arbitrary
|
execute
|
remote
|
allows
|
Mantis
|
0190a
|
code
|
file
|
PHP
|
PHP remote file inclusion vulnerability in Mantis 0.19.0a allows remote attackers to execute arbitrary PHP code by modifying the (1) t_core_path parameter to bug_api.php or (2) t_core_dir parameter to relationship_api.php to reference a URL on a remote web server that contains the code.
Directory traversal vulnerability in acceptDecl
acceptDeclinephp
|
vulnerability
|
Relationship
|
Management
|
traversal
|
Directory
|
Customer
|
Source
|
Sugar
|
Suite
|
Open
|
Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter.
PHP remote file include vulnerability in accept
acceptDeclinephp
|
vulnerability
|
Relationship
|
Management
|
Customer
|
include
|
Source
|
remote
|
Sugar
|
Suite
|
file
|
Open
|
PHP
|
PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the beanFiles array parameter.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in Mantis 1.00rc4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) hide_status, (2) handler_id, (3) user_monitor, (4) reporter_id, (5) view_type, (6) show_severity, (7) show_category, (8) show_status, (9) show_resolution, (10) show_build, (11) show_profile, (12) show_priority, (13) highlight_changed, (14) relationship_type, and (15) relationship_bug parameters in (a) view_all_set.php; the (16) sort parameter in (b) manage_user_page.php; the (17) view_type parameter in (c) view_filters_page.php; and the (18) title parameter in (d) proj_doc_delete.php. NOTE: item 17 might be subsumed by CVE-2005-4522.
Cross-site scripting (XSS) vulnerability in Rev
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in RevoBoard 1.8, as derived from PunBB, allows remote attackers to inject arbitrary web script or HTML via a substitution cipher of the email tag, which is transformed when the application's e-mail address obfuscator reverses the transformation. NOTE: it is not clear whether this is a site-specific issue; however, the claimed codebase relationship with PunBB might be relevant.
SQL injection vulnerability in Dating Agent PRO
vulnerability
|
injection
|
Dating
|
Agent
|
PRO
|
SQL
|
SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the (1) pid parameter in picture.php, (2) mid parameter in mem.php, and the (3) sex and (4) relationship parameters in search.php.
Directory traversal vulnerability in A.l-Pifou
inc/change_lang_ckphp
|
choix_languephp
|
livre_livrephp
|
vulnerability
|
ze_langue_02
|
demonstrated
|
livre_dorphp
|
indirectly
|
parameter
|
choix_lng
|
accessing
|
Directory
|
traversal
|
inclusion
|
sequences
|
attackers
|
arbitrary
|
possibly
|
Al-Pifou
|
trigger
|
related
|
allows
|
cookie
|
remote
|
using
|
files
|
read
|
18p2
|
then
|
via
|
set
|
Directory traversal vulnerability in A.l-Pifou 1.8p2 allows remote attackers to read arbitrary files via ".." sequences in the ze_langue_02 cookie, as demonstrated by using the choix_lng parameter to choix_langue.php to indirectly set the cookie, then accessing livre_dor.php to trigger the inclusion from inc/change_lang_ck.php, possibly related to livre_livre.php. NOTE: the livre_livre.php relationship has been reported by some third party sources.
Multiple unspecified vulnerabilities in the Cus
vulnerabilities
|
authenticated
|
Relationship
|
unspecified
|
PeopleSoft
|
Enterprise
|
Management
|
component
|
Marketing
|
Multiple
|
Customer
|
unknown
|
remote
|
Online
|
Oracle
|
Bundle
|
impact
|
allow
|
users
|
have
|
aka
|
Multiple unspecified vulnerabilities in the Customer Relationship Management Online Marketing component in Oracle PeopleSoft Enterprise 8.9 Bundle 26 and 9.0 Bundle 7 allow remote authenticated users to have an unknown impact, aka (1) PSE04 and (2) PSE05.
Software vulnerabilities results 1 to 13 of 13
Page:
1