Primary Vendor -- Product | Description | | CVSS Score | Source & Patch Info | | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-3779. Reason: This candidate is a duplicate of CVE-2005-3779. Notes: All CVE users should reference CVE-2005-3779 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | | 0.0 | CVE-2006-2125
| 321soft -- PhP-Gallery
| Absolute path traversal vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to browse arbitrary directories via the path parameter. | | 2.3 | CVE-2006-2211 OTHER-REF BID FRSIRT SECUNIA
| Advanced Poll -- Advanced Poll
| include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify the IP address of a client, which makes it easier for remote attackers to spoof the source IP and bypass voting restrictions. | | 2.3 | CVE-2006-2131 EVULN
| Albinator -- Albinator
| Multiple cross-site scripting (XSS) vulnerabilities in albinator 2.0.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) cid parameter to dlisting.php or (2) preloadSlideShow parameter to showpic.php. | | 2.3 | CVE-2006-2181 OTHER-REF BID FRSIRT
| Artmedic Webdesign -- Artmedic Event
| PHP remote file inclusion vulnerability in event/index.php in Artmedic Event allows remote attackers to execute arbitrary code via a URL in the page parameter. | | 2.3 | CVE-2006-2119 OTHER-REF BUGTRAQ OTHER-REF BID FRSIRT SECUNIA
| Best Practical Solutions -- RT: Request Tracker
| RT: Request Tracker 3.5.HEAD allows remote attackers to obtain sensitive information via the Rows parameter in Dist/Display.html, which reveals the installation path in an error message. | | 2.3 | CVE-2006-2169 OTHER-REF
| BitDamaged -- geoBlog
| Cross-site scripting (XSS) vulnerability in viewcat.php in geoBlog 1.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter. | | 2.3 | CVE-2006-2177 BUGTRAQ OTHER-REF BID
| Chadha Software Technologies -- phpkb Knowledge Base
| Cross-site scripting (XSS) vulnerability in search.php in PHPKB Knowledge Base allows remote attackers to inject arbitrary web script or HTML via the searchkeyword parameter. NOTE: the original researcher claims that the vendor disputed the vulnerability, saying that only the vendor's own demo page was affected. As of 20060503, there is no public information regarding whether this dispute is valid or invalid. | | 2.3 | CVE-2006-2184 OTHER-REF FRSIRT SECUNIA
| CMScout -- CMScout
| Multiple cross-site scripting (XSS) vulnerabilities in CMScout 1.10 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the Body field of a private message (PM), (2) BBCode, or (3) a forum post. | | 3.3 | CVE-2006-2188 BUGTRAQ BID
| Collaborative Portal Server Project -- Collaborative Portal Server
| Cross-site scripting (XSS) vulnerability in popup_image in Collaborative Portal Server (CPS) 3.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the pos argument. | | 2.3 | CVE-2006-2141 OTHER-REF SECUNIA
| Computer Associates -- Resource Initialization Manager
| Unspecified vulnerability in CA CAI Resource Initialization Manager (CAIRIM) 1.x before 20060502, as used in z/OS Common Services and the LMP component in multiple products, allows attackers to violate integrity via a certain "problem state program" that uses SVC to gain access to supervisor state, key 0. | | 3.3 | CVE-2006-2201 COMPUTER ASSOCIATES COMPUTER ASSOCIATES FRSIRT SECUNIA
| DeltaScripts -- Pro Publish
| Direct static code injection vulnerability in Pro Publish 2.0 allows rmeote authenticated adminitrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php. | | 2.8 | CVE-2006-2129 OTHER-REF BID FRSIRT SECUNIA
| Desert Dog Software -- Pinnacle Cart
| Cross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart 3.33 and earlier allows remote attackers to inject arbitrary web script or HTML via the setbackurl parameter. | | 1.9 | CVE-2006-2163 OTHER-REF BID FRSIRT SECUNIA
| Devsyn -- Open Bulletin Board
| Open Bulletin Board (OpenBB) 1.0.8 allows remote attackers to obtain the full path of the web server via an invalid pforums parameter to (1) misc.php and (2) member.php. | | 2.3 | CVE-2006-2216 BUGTRAQ
| DUclassified -- DUclassified
| SQL injection vulnerability in detail.asp in DUclassified allows remote attackers to execute arbitrary SQL commands via the iPro parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 3.3 | CVE-2006-2132 SECURITY FOCUS BID
| Extrosoft -- Thyme
| Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the search page. | | 2.3 | CVE-2006-2117 BUGTRAQ BID FRSIRT SECUNIA
| EZB Systems -- UltraISO
| Directory traversal vulnerability in UltraISO 8.0.0.1392 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image. | | 2.3 | CVE-2006-2099 BUGTRAQ OTHER-REF FRSIRT SECUNIA BID SECTRACK
| Hostapd -- Hostapd
| Hostapd 0.3.7-2 allows remote attackers to cause a denial of service (segmentation fault) via an unspecified value in the key_data_length field of an EAPoL frame. | | 2.3 | CVE-2006-2213 OTHER-REF FRSIRT SECUNIA
| I-Rater -- I-Rater Platinum
| PHP remote file include vulnerability in admin/config_settings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the include_path parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929. | | 2.3 | CVE-2006-2121 BUGTRAQ BID
| Invision Power Services -- Invision Power Board
| SQL injection vulnerability in the topic deletion functionality (post_delete function in func_mod.php) for Invision Power Board 2.1.5 allows remote authenticated moderators to execute arbitrary SQL commands via the selectedpids parameter, which bypasses an integer value check when the $id variable is an array. | | 2.8 | CVE-2006-2204 BUGTRAQ BUGTRAQ OTHER-REF BID FRSIRT SECUNIA
| JBMC Software -- DirectAdmin
| Cross-site scripting (XSS) vulnerability in HTM_PASSWD in DirectAdmin Hosting Management allows remote attackers to inject arbitrary web script or HTML via the domain parameter. | | 2.3 | CVE-2006-2153 BUGTRAQ FRSIRT SECUNIA
| Jcink -- TextFileBB
| Multiple cross-site scripting (XSS) vulnerabilities in TextFileBB 1.0.16 allow remote attackers to inject arbitrary web script or HTML via Javascript events such as "onmouseover" in the (1) color, (2) size, or (3) url bbcode tags. | | 2.3 | CVE-2006-2143 BUGTRAQ BID SECUNIA
| KMiNT21 Software -- Golden FTP Server
| Buffer overflow in Golden FTP Server Pro 2.70 allows remote attackers to cause a denial of service (application crash) via a long argument to the (1) NLST or (2) APPE commands, as demonstrated by the Infigo FTPStress Fuzzer. | | 2.3 | CVE-2006-2180 BUGTRAQ OTHER-REF BID FRSIRT SECUNIA
| libTIFF -- libTIFF
| The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read. | | 1.6 | CVE-2006-2120 OTHER-REF OTHER-REF MANDRIVA UBUNTU BID SECUNIA SECUNIA
| Linux -- Linux kernel
| The selinux_ptrace logic in hooks.c in SELinux for Linux 2.6.6 allows local users with ptrace permissions to change the tracer SID to an SID of another process. | | 1.6 | CVE-2006-1052 MLIST MLIST OTHER-REF UBUNTU BID SECUNIA
| Linux -- Linux kernel
| The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote attackers to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function. | | 2.3 | CVE-2006-1527 OTHER-REF FRSIRT
| MySQL -- MySQL
| The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read. | | 2.3 | CVE-2006-1516 BUGTRAQ OTHER-REF OTHER-REF OTHER-REF FRSIRT SECTRACK SECUNIA
| MySQL -- MySQL
| sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error message. | | 2.3 | CVE-2006-1517 BUGTRAQ OTHER-REF OTHER-REF OTHER-REF FRSIRT SECTRACK SECUNIA
| MySQL -- MySQL
| Buffer overflow in the open_table function in sql_base.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values. | | 2.3 | CVE-2006-1518 BUGTRAQ OTHER-REF OTHER-REF OTHER-REF FRSIRT SECTRACK SECUNIA
| Nagios -- Nagios
| Buffer overflow in CGI scripts in Nagios 1.x before 1.4 and 2.x before 2.3 allows remote attackers to execute arbitrary code via a negative content length (Content-Length) HTTP header. | | 2.3 | CVE-2006-2162 OTHER-REF OTHER-REF
| NeoMail -- NeoMail
| Cross-site scripting (XSS) vulnerability in neomail.pl in NeoMail 1.29 allows remote attackers to inject arbitrary web script or HTML via the sessionid parameter. | | 2.3 | CVE-2006-2138 BUGTRAQ BID SECUNIA
| NetBSD -- NetBSD
| The audio_write function in NetBSD 3.0 allows local users to cause a denial of service (kernel crash) by using the audiosetinfo ioctl to change the sample rate of an audio device. | | 1.6 | CVE-2006-2205 NETBSD SECTRACK
| Open WebMail -- Open WebMail
| Cross-site scripting (XSS) vulnerability in ow-shared.pl in OpenWebMail (OWM) 2.51 and earlier allows remote attackers to inject arbitrary web script or HTML via the sessionid parameter in (1) openwebmail-send.pl, (2) openwebmail-advsearch.pl, (3) openwebmail-folder.pl, (4) openwebmail-prefs.pl, (5) openwebmail-abook.pl, (6) openwebmail-read.pl, (7) openwebmail-cal.pl, and (8) openwebmail-webdisk.pl. NOTE: the openwebmail-main.pl vector is already covered by CVE-2005-2863. | | 3.3 | CVE-2006-2190 BLOGSPOT MLIST OPENWEBMAIL OPENWEBMAIL SECUNIA XF
| Pentasoft Corp. -- Avactis Shopping Cart
| Multiple cross-site scripting (XSS) vulnerabilities in Avactis Shopping Cart 0.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) category_id parameter in (a) store_special_offers.php and (b) store.php and (2) prod_id parameter in (c) product_info.php. NOTE: this issue might be resultant from SQL injection. | | 1.9 | CVE-2006-2165 OTHER-REF
| Planetluc -- MyNews
| Multiple cross-site scripting (XSS) vulnerabilities in mynews.inc.php in MyNews 1.6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) hash and (2) page parameters. | | 2.3 | CVE-2006-2208 OTHER-REF BID FRSIRT SECUNIA XF
| Plogger -- Plogger
| SQL injection vulnerability in gallery.php in Plogger Beta 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter, when the level is set to "slideshow". NOTE: This is a different vulnerability than CVE-2005-4246. | | 2.3 | CVE-2006-2157 OTHER-REF
| resmgr -- resmgrd
| resmgrd in resmgr for SUSE Linux and other distributions does not properly handle when access to a USB device is granted by using "usb:," notation, which grants access to all USB devices and allows local users to bypass intended restrictions. NOTE: this is a different vulnerability than CVE-2005-4788. | | 3.3 | CVE-2006-2147 SUSE DEBIAN
| Russcom Network -- Loginphp
| CRLF injection vulnerability in help.php in Russcom Network Loginphp allows remote attackers to spoof e-mails and inject MIME headers via CRLF sequences in the email address. | | 2.3 | CVE-2006-2159 BUGTRAQ BID OSVDB SECUNIA
| Russcom Network -- Loginphp
| Cross-site scripting (XSS) vulnerability in Russcom Network Loginphp (Russcom.Loginphp) allows remote attackers to inject arbitrary web script or HTML via the username field when registering. | | 2.3 | CVE-2006-2160 BUGTRAQ BID OSVDB SECUNIA
| SloughFlash -- SF-Users
| Cross-site scripting (XSS) vulnerability in SloughFlash SF-Users 1.0, possibly in register.php, allows remote attackers to inject arbitrary web script or HTML by setting the username field to contain JavaScript in the SRC attribute of an IMG element. | | 2.3 | CVE-2006-2167 BUGTRAQ BID FRSIRT SECUNIA
| Virtual Hosting Control System -- Virtual Hosting Control System
| Multiple cross-site scripting (XSS) vulnerabilities in admin/server_day_stats.php in Virtual Hosting Control System (VHCS) allow remote attackers to inject arbitrary web script or HTML via the (1) day, (2) month, or (3) year parameter. | | 2.3 | CVE-2006-2174 BUGTRAQ BID SECUNIA
| X.org -- X11R6
| Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a "&" instead of a "*" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue. | | 1.6 | CVE-2006-1526 MLIST OTHER-REF GENTOO MANDRIVA OPENBSD REDHAT SUSE UBUNTU FRSIRT SECTRACK SECUNIA SECUNIA SECUNIA SECUNIA SECUNIA SECUNIA SECUNIA
| Zenphoto -- zenphoto
| zenphoto 1.0.1 beta and earlier allow remote attackers to obtain sensitive information via a direct request for the (1) /photos/themes/default/ and (2) /photos/themes/testing/ URIs, which reveals the path in an error message. | | 2.3 | CVE-2006-2186 BUGTRAQ OTHER-REF BID
|