Vulnerabilities (CVE)

Filter

130145 total CVE
CVE Vendors Products Updated CVSS
CVE-2004-2280 1 Ibm 1 Lotus Notes 2008-09-05 5.0
Buffer overflow in IBM Lotus Notes 6.5.x before 6.5.3 and 6.0.x before 6.0.5 allows remote attackers to cause a denial of service (crash) via unknown vectors related to Java applets, as identified by KSPR62F4KN.
CVE-2004-2273 1 Evan Sims 1 Effingerd 2008-09-05 5.0
efFingerD 0.2.12 allows remote attackers to cause a denial of service (daemon crash) via a packet with a single byte, which triggers a "Wrong protocol or connection state" error.
CVE-2004-2247 1 Goosequill 1 Audienceconnect 2008-09-05 10.0
Unknown vulnerability in the "admin of paypal email addresses" in AudienceConnect before 1.0.beta.21 has unknown impact and attack vectors.
CVE-2004-2246 1 Goollery 1 Goollery 2008-09-05 4.3
Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php.
CVE-2004-2237 1 Moodle 1 Moodle 2008-09-05 10.0
Unknown vulnerability in Moodle before 1.3.4 has unknown impact and attack vectors, related to "strings in Moodle texts."
CVE-2004-2236 1 Moodle 1 Moodle 2008-09-05 10.0
Unknown vulnerability in Moodle before 1.3.3 has unknown impact and attack vectors, related to language setting.
CVE-2004-2235 1 Moodle 1 Moodle 2008-09-05 10.0
Unknown vulnerability in Moodle before 1.2 has unknown impact and attack vectors, related to improper filtering of text.
CVE-2004-2234 2008-09-05 7.5
Unknown vulnerability in Moodle before 1.2 allows teachers to log in as administrators.
CVE-2004-2225 1 Mozilla 1 Firefox 2008-09-05 5.0
Mozilla Firefox before 0.10.1 allows remote attackers to delete arbitrary files in the download directory via a crafted data: URI that is not properly handled when the user clicks the Save button.
CVE-2004-2210 1 Express-web 1 Express-web Content Management System 2008-09-05 4.3
Multiple cross-site scripting (XSS) vulnerabilities in Express-Web Content Management System (CMS) allow remote attackers to steal cookie-based authentication information and possibly perform other exploits via the (1) n, (2) b, (3) e, or (4) a...
CVE-2004-2209 1 Ideal Science 1 Idealbb 2008-09-05 7.5
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
CVE-2004-2208 1 Ideal Science 1 Idealbb 2008-09-05 5.0
CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors.
CVE-2004-2207 1 Ideal Science 1 Idealbb 2008-09-05 4.3
Cross-site scripting (XSS) vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
CVE-2004-2194 1 Mailenable 2 Mailenable Professional, Mailenable Enterprise 2008-09-05 5.0
MailEnable Professional Edition before 1.53 and Enterprise Edition before 1.02 allows remote attackers to cause a denial of service (crash) via malformed (1) SMTP or (2) IMAP commands.
CVE-2004-2190 1 Unzoo 1 Unzoo 2008-09-05 5.0
Directory traversal vulnerability in Unzoo 4.4-2 has unknown impact and attack vectors.
CVE-2004-2189 1 Dmxready 1 Dmxready Site Chassis Manager 2008-09-05 7.5
SQL injection vulnerability in DMXReady Site Chassis Manager allows remote attackers to execute arbitrary SQL commands via unknown vectors.
CVE-2004-2187 1 Mediawiki 1 Mediawiki 2008-09-05 5.0
Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors.
CVE-2004-2186 1 Mediawiki 1 Mediawiki 2008-09-05 7.5
SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance.
CVE-2004-2185 1 Mediawiki 1 Mediawiki 2008-09-05 6.8
Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via (1) the UnicodeConverter extension, (2) raw page views, (3) SpecialIpblocklist, (4)...
CVE-2004-2183 1 Wehelpbus 1 Wehelpbus 2008-09-05 7.5
Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string.