Show filters
83 Total Results
Displaying 71-80 of 83
Sort by:
Attacker Value
Unknown

CVE-2008-7004

Disclosure Date: August 19, 2009 (last updated October 04, 2023)
Buffer overflow in Electronic Logbook (ELOG) before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c.
0
0
Attacker Value
Unknown

CVE-2008-0444

Disclosure Date: January 25, 2008 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Electronic Logbook (ELOG) before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via subtext parameter to unspecified components.
0
0
Attacker Value
Unknown

CVE-2008-0445

Disclosure Date: January 25, 2008 (last updated October 04, 2023)
The replace_inline_img function in elogd in Electronic Logbook (ELOG) before 2.7.1 allows remote attackers to cause a denial of service (infinite loop) via crafted logbook entries. NOTE: some of these details are obtained from third party information.
0
0
Attacker Value
Unknown

CVE-2007-5258

Disclosure Date: October 06, 2007 (last updated October 04, 2023)
PHP remote file inclusion vulnerability in log.php in phpFreeLog alpha 0.2.0 allows remote attackers to include and execute arbitrary files via unspecified vectors. NOTE: the original disclosure is likely erroneous.
0
0
Attacker Value
Unknown

CVE-2007-2290

Disclosure Date: April 26, 2007 (last updated October 04, 2023)
Multiple PHP remote file inclusion vulnerabilities in B2 Weblog and News Publishing Tool 0.6.1 allow remote attackers to execute arbitrary PHP code via a URL in the b2inc parameter to (1) b2archives.php, (2) b2categories.php, or (3) b2mail.php. NOTE: this may overlap CVE-2002-1466.
0
0
Attacker Value
Unknown

CVE-2006-6830

Disclosure Date: December 31, 2006 (last updated October 04, 2023)
PHP remote file inclusion vulnerability in b2verifauth.php in b2 Blog 0.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the index parameter.
0
0
Attacker Value
Unknown

CVE-2005-4743

Disclosure Date: December 31, 2005 (last updated February 22, 2025)
Multiple SQL injection vulnerabilities in index.php in NeLogic Nephp Publisher 4.5.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) nnet_catid parameters.
0
0
Attacker Value
Unknown

CVE-2005-4439

Disclosure Date: December 21, 2005 (last updated February 22, 2025)
Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.
0
0
Attacker Value
Unknown

CVE-2005-2698

Disclosure Date: August 26, 2005 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in browse.php in Nephp Publisher Enterprise 3.04 allows remote attackers to inject arbitrary web script or HTML via a hex-encoded keywords parameter.
0
0
Attacker Value
Unknown

CVE-2003-1488

Disclosure Date: December 31, 2003 (last updated February 22, 2025)
The (1) verif_admin.php and (2) check_admin.php scripts in Truegalerie 1.0 allow remote attackers to gain administrator access via a request to admin.php without the connect parameter and with the loggedin parameter set to any value, such as 1.
0
0
View More Topics  < Previous  Next >