Primary Vendor -- Product | Description | | CVSS Score | Source & Patch Info | Apache Software Foundation -- Apache HTTP Server
| Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | | 4.3 | CVE-2007-6388 OTHER-REF OTHER-REF OTHER-REF FRSIRT SECTRACK
| Apache Software Foundation -- Apache HTTP Server
| Cross-site scripting (XSS) vulnerability in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | | 4.3 | CVE-2007-6421 OTHER-REF FRSIRT
| Apple -- Quicktime
| Stack-based buffer overflow in Apple Quicktime Player 7.3.1.70, when running on Windows, allows remote attackers to execute arbitrary code via a long error message response to an rtsp:// request. | | 6.8 | CVE-2008-0234 BUGTRAQ BUGTRAQ MILW0RM CERT-VN BID
| aruba_networks -- Aruba Mobility Controllers
| Unspecified vulnerability in the LDAP authentication feature in Aruba Mobility Controller 2.3.6.15, 2.5.2.11, 2.5.4.25, 2.5.5.7, 3.1.1.3, and 2.4.8.11-FIPS or earlier allows remote attackers to bypass authentication mechanisms and obtain management or VPN interface access. | | 6.8 | CVE-2008-0150 BUGTRAQ OTHER-REF BID SECUNIA
| Asterisk -- s800i Asterisk -- Asterisk Business Edition Asterisk -- Asterisk Appliance Developer Kit Asterisk -- AsteriskNOW Asterisk -- Open Source
| The SIP channel driver in Asterisk Open Source 1.4.x before 1.4.17, Business Edition before C.1.0-beta8, AsteriskNOW before beta7, Appliance Developer Kit before Asterisk 1.4 revision 95946, and Appliance s800i 1.0.x before 1.0.3.4 allows remote attackers to cause a denial of service (daemon crash) via a BYE message with an Also (Also transfer) header, which triggers a NULL pointer dereference. | | 5.0 | CVE-2008-0095 BUGTRAQ OTHER-REF OTHER-REF BID FRSIRT SECTRACK SECUNIA
| AwesomeTemplateEngine -- AwesomeTemplateEngine
| Multiple cross-site scripting (XSS) vulnerabilities in templates/example_template.php in AwesomeTemplateEngine allow remote attackers to inject arbitrary web script or HTML via the (1) data[title], (2) data[message], (3) data[table][1][item], (4) data[table][1][url], or (5) data[poweredby] parameter. | | 4.3 | CVE-2008-0190 BUGTRAQ FULLDISC OTHER-REF OTHER-REF BID XF
| Bitweaver -- Bitweaver
| Directory traversal vulnerability in wiki/edit.php in Bitweaver R2 CMS allows remote attackers to obtain sensitive information (script source code) via a .. (dot dot) in the suck_url parameter. | | 5.0 | CVE-2007-6651 MILW0RM OTHER-REF BUGTRAQ BID XF
| eTicket -- eTicket
| Multiple cross-site scripting (XSS) vulnerabilities in newticket.php in eTicket 1.5.5.2, and 1.5.6 RC2 and RC3, allow remote attackers to inject arbitrary web script or HTML via the (1) Name and (2) Subject parameters. | | 4.3 | CVE-2008-0093 OTHER-REF SECUNIA
| EvilBoard -- EvilBoard
| Cross-site scripting (XSS) vulnerability in index.php in EvilBoard 0.1a (Alpha) allows remote attackers to inject arbitrary web script or HTML via the c parameter. | | 4.3 | CVE-2008-0155 MILW0RM
| ExpressionEngine -- ExpressionEngine
| Cross-site scripting (XSS) vulnerability in index.php in ExpressionEngine 1.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the URL parameter. | | 4.3 | CVE-2008-0201 BUGTRAQ FULLDISC OTHER-REF OTHER-REF
| ExpressionEngine -- ExpressionEngine
| CRLF injection vulnerability in index.php in ExpressionEngine 1.2.1 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the URL parameter. | | 4.3 | CVE-2008-0202 BUGTRAQ FULLDISC OTHER-REF OTHER-REF
| Foxit -- WAC Server
| Foxit WAC Server 2.1.0.910 and earlier allows remote attackers to cause a denial of service (crash) via a Telnet request with long options. | | 5.0 | CVE-2008-0151 BUGTRAQ OTHER-REF BID SECUNIA
| Horde -- IMP Horde -- Groupware Webmail Edition Horde -- Framework Horde -- Horde
| IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to (1) delete arbitrary e-mail messages via a modified numeric ID or (2) "purge" deleted emails via a crafted email message. | | 5.8 | CVE-2007-6018 OTHER-REF BID SECUNIA
| Hughes Technologies -- W3-mSQL
| Cross-site scripting (XSS) vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the top-level URI. | | 4.3 | CVE-2008-0146 BUGTRAQ BID SECUNIA
| InstantSoftwares -- Dating_Site
| Cross-site scripting (XSS) vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attackers to inject arbitrary web script or HTML via the msg parameter, a different product than CVE-2006-6022. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 4.3 | CVE-2008-0131 SECUNIA
| Layton Technology -- HelpBox
| Unrestricted file upload vulnerability in uploadrequest.asp in Layton HelpBox 3.7.1 allows remote authenticated users to upload and execute arbitrary ASP files, related to not properly checking file extensions. | | 6.5 | CVE-2007-5401 OTHER-REF BID SECUNIA
| Layton Technology -- HelpBox
| Multiple SQL injection vulnerabilities in Layton HelpBox 3.7.1 allow (1) remote attackers to execute arbitrary SQL commands via the sys_request_id parameter to editrequestenduser.asp; and allow remote authenticated users to execute arbitrary SQL commands via (2) the oldpassword parameter to writepwdenduser.asp, and the sys_request_id parameter to (3) changerequeststatus.asp, (4) editrequestuser.asp, (5) requestcommentsuser.asp, and (6) useractions.asp, different vectors than CVE-2004-2551. | | 6.5 | CVE-2007-5402 OTHER-REF BID SECUNIA
| Layton Technology -- HelpBox
| Layton HelpBox 3.7.1 generates different responses depending on whether or not a username is valid in a failed login attempt, which allows remote attackers to enumerate valid usernames. | | 5.0 | CVE-2007-5404 OTHER-REF BID SECUNIA
| LoudBlog -- LoudBlog
| Eval injection vulnerability in loudblog/inc/parse_old.php in Loudblog 0.8.0 and earlier allows remote attackers to execute arbitrary PHP code via the template parameter. | | 6.8 | CVE-2008-0139 MILW0RM BID SECUNIA
| Makale Scripti -- Makale Scripti
| Cross-site scripting (XSS) vulnerability in Makale Scripti allows remote attackers to inject arbitrary web script or HTML via the ara parameter to the default URI under Ara/ in a search action. | | 4.3 | CVE-2007-6673 BID SECUNIA
| MediaLand -- RotaBanner Local
| Multiple cross-site scripting (XSS) vulnerabilities in account/index.html in RotaBanner Local 3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user or (2) drop parameter. | | 4.3 | CVE-2008-0200 BUGTRAQ FULLDISC OTHER-REF OTHER-REF
| Merak -- IceWarp Mail Server
| Cross-site scripting (XSS) vulnerability in admin/index.html in Merak IceWarp Mail Server allows remote attackers to inject arbitrary web script or HTML via the message parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 4.3 | CVE-2008-0218 OTHER-REF BID XF
| Microsoft -- Visual Fox Pro
| An ActiveX control for Microsoft Visual FoxPro (vfp6r.dll 6.0.8862.0) allows remote attackers to execute arbitrary commands by invoking the DoCmd method. | | 5.8 | CVE-2008-0236 OTHER-REF BID XF
| Microsoft -- Rich Textbox Control
| The Microsoft Rich Textbox ActiveX Control (RICHTX32.OCX) 6.1.97.82 allows remote attackers to execute arbitrary commands by invoking the insecure SaveFile method. | | 6.8 | CVE-2008-0237 OTHER-REF BID XF
| Million Dollar Script -- Million Dollar Script
| Absolute path traversal vulnerability in index.php in Million Dollar Script 2.0.14 allows remote attackers to read arbitrary files via encoded "/" (%2F) sequences in the link parameter. | | 5.0 | CVE-2008-0156 BUGTRAQ BID XF
| MODxCMS -- MODxCMS
| Multiple directory traversal vulnerabilities in MODx Content Management System 0.9.6.1 allow remote attackers to (1) include and execute arbitrary local files via a .. (dot dot) in the as_language parameter to assets/snippets/AjaxSearch/AjaxSearch.php, reached through index-ajax.php; and (2) read arbitrary local files via a .. (dot dot) in the file parameter to assets/js/htcmime.php. | | 6.4 | CVE-2008-0094 BUGTRAQ OTHER-REF BID BID SECUNIA
| Mortbay Jetty -- Jetty
| Directory traversal vulnerability in Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass protection mechanisms and read arbitrary files via directory traversal sequences in the URI, as demonstrated by files in WEB-INF, related to improper handling of consecutive '/' (slash) characters. | | 5.0 | CVE-2007-6672 OTHER-REF OTHER-REF CERT-VN
| MyPHP Forum -- MyPHP Forum
| Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors. | | 6.8 | CVE-2008-0099 MILW0RM
| Novell -- Netware Client Novell -- NICM.SYS driver
| NICM.SYS driver 3.0.0.4, as used in Novell NetWare Client 4.91 SP4, allows local users to execute arbitrary code by opening the \\.\nicm device and providing crafted kernel addresses via IOCTLs with the METHOD_NEITHER buffering mode. | | 6.9 | CVE-2007-5762 IDEFENSE OTHER-REF
| Peters Software -- Random Anti-Spam Image WordPress -- WordPress
| Cross-site scripting (XSS) vulnerability in Peter's Random Anti-Spam Image 0.2.4 and earlier plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the comment field in the comment form. | | 4.3 | CVE-2007-6677 OTHER-REF
| PHPCredo -- PHCDownload
| Cross-site scripting (XSS) vulnerability in search.php in PHCDownload 1.1.0 allows remote attackers to inject arbitrary web script or HTML via the string parameter. | | 4.3 | CVE-2007-6669 OTHER-REF BID SECUNIA
| phpRisk -- NetRisk
| Cross-site scripting (XSS) vulnerability in index.php in NetRisk 1.9.7 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter, possibly related to CVE-2008-0144. | | 4.3 | CVE-2008-0186 MILW0RM
| PostgreSQL -- PostgreSQL
| PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number. | | 6.8 | CVE-2007-4769 OTHER-REF BID FRSIRT SECTRACK SECUNIA XF
| PostgreSQL -- PostgreSQL
| The TCL regular expression parser, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, allows remote authenticated users to cause a denial of service (infinite loop) via a crafted regular expression. | | 4.0 | CVE-2007-4772 OTHER-REF OTHER-REF BID FRSIRT SECTRACK SECUNIA XF
| PostgreSQL -- PostgreSQL
| Algorithmic complexity vulnerability in the TCL regular expression parser, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states. | | 6.8 | CVE-2007-6067 OTHER-REF OTHER-REF BID FRSIRT SECTRACK SECUNIA XF
| PostgreSQL -- PostgreSQL
| PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges. | | 5.5 | CVE-2007-6600 OTHER-REF BID FRSIRT SECTRACK SECUNIA XF
| Pragma Systems -- FortressSSH
| Pragma FortressSSH 5.0 Build 4 Revision 293 and earlier handles long input to sshd.exe by creating an error-message window and waiting for the administrator to click in this window before terminating the sshd.exe process, which allows remote attackers to cause a denial of service (connection slot exhaustion) via a flood of SSH connections with long data objects, as demonstrated by (1) a long list of keys and (2) a long username. | | 5.0 | CVE-2008-0132 OTHER-REF OTHER-REF XF BUGTRAQ BID
| Pragma Systems -- Pragma TelnetServer
| telnetd.exe in Pragma TelnetServer 7.0.4.589 allows remote attackers to cause a denial of service (process crash and resource exhaustion) via a crafted TELOPT PRAGMA LOGON telnet option, which triggers a NULL pointer dereference. | | 5.0 | CVE-2008-0153 BUGTRAQ OTHER-REF BID
| Prenotazioni On Line -- SysHotel On Line System
| Absolute path traversal vulnerability in index.php in Sys-Hotel on Line System allows remote attackers to read arbitrary files via an encoded "/" ("%2F") in the file parameter. | | 6.4 | CVE-2008-0184 BUGTRAQ BID
| PRO_Search -- PRO_Search
| PRO-Search 0.17 and earlier allows remote attackers to cause a denial of service via certain values of the show_page and time parameters to the default URI. | | 5.0 | CVE-2008-0199 BUGTRAQ FULLDISC OTHER-REF OTHER-REF OTHER-REF
| PRO_Search -- PRO_Search
| Multiple cross-site scripting (XSS) vulnerabilities in PRO-Search 0.17 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) prot, (2) host, (3) path, (4) name, (5) ext, (6) size, (7) search_days, or (8) show_page parameter to the default URI. | | 4.3 | CVE-2008-0207 BUGTRAQ FULLDISC OTHER-REF OTHER-REF OTHER-REF BID SECUNIA
| RapidShare -- Database
| Cross-site scripting (XSS) vulnerability in Default.asp in RapidShare Database allows remote attackers to inject arbitrary web script or HTML via the Arayalim parameter. | | 4.3 | CVE-2007-6674 OTHER-REF SECUNIA
| Seattle Lab Software -- SLNet RF Telnet Server
| SLnet.exe in SeattleLab SLNet RF Telnet Server 4.1.1.3758 and earlier allows user-assisted remote attackers to cause a denial of service (crash) via unpsecified telnet options, which triggers a NULL pointer dereference. NOTE: the crash is not user-assisted when the server is running in debug mode. | | 4.3 | CVE-2008-0152 BUGTRAQ OTHER-REF BID SECUNIA
| Shop-Script -- Shop-Script
| Directory traversal vulnerability in index.php in Shop-Script 2.0 and possibly other versions allows remote attackers to read arbitrary files via a .. (dot dot) in the aux_page parameter. | | 5.0 | CVE-2008-0158 OTHER-REF BID XF
| SiteAtSchool -- SiteAtSchool
| SQL injection vulnerability in starnet/addons/slideshow_full.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the album_name parameter. | | 6.8 | CVE-2008-0129 MILW0RM BID XF
| SmallNuke -- SmallNuke
| SQL injection vulnerability in index.php in SmallNuke 2.0.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via (1) the user_email parameter and possibly (2) username parameter in a Members action. | | 6.8 | CVE-2008-0147 MILW0RM BID SECUNIA
| Snitz Forums 2000 -- Snitz Forums
| Cross-site scripting (XSS) vulnerability in Forums/setup.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to inject arbitrary web script or HTML via the MAIL parameter. | | 4.3 | CVE-2008-0134 OTHER-REF OTHER-REF SECUNIA
| Snitz Forums 2000 -- Snitz Forums
| Snitz Forums 2000 3.4.06 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum/snitz_forums_2000.mdb. | | 5.0 | CVE-2008-0135 OTHER-REF OTHER-REF
| Snitz Forums 2000 -- Snitz Forums
| Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path. | | 5.0 | CVE-2008-0136 OTHER-REF OTHER-REF
| Snitz Forums 2000 -- Snitz Forums
| Cross-site scripting (XSS) vulnerability in login.asp in Snitz Forums 2000 3.4.05 and earlier allows remote attackers to inject arbitrary web script or HTML via the target parameter. | | 4.3 | CVE-2008-0208 OTHER-REF OTHER-REF SECUNIA
| Snitz Forums 2000 -- Snitz Forums
| Forums/login.asp in Snitz Forums 2000 3.4.06 and earlier allows remote attackers to redirect users to arbitrary web sites via a URL in the target parameter. | | 5.8 | CVE-2008-0209 OTHER-REF OTHER-REF
| SuSE -- YaST2 SuSE -- SuSE Linux
| Untrusted search path vulnerability in yast2-core in SUSE Linux might allow local users to execute arbitrary code by creating a malicious module in the current working directory. | | 6.9 | CVE-2007-6678 SUSE
| Tutos -- Tutos
| TUTOS 1.3 allows remote attackers to read system information via a direct request to php/admin/phpinfo.php, which calls the phpinfo function. | | 5.0 | CVE-2008-0149 MILW0RM SECUNIA
| Uber Uploader -- Uber Uploader
| The default configuration of Uber Uploader (UU) 5.3.6 and earlier does not block uploads of (1) .html, (2) .asp, and other possibly dangerous extensions, which allows remote attackers to use these extensions in uploads via (a) uu_file_upload.php, related to uu_file_upload.js and (b) uber_uploader_file.php, related to uber_uploader_file.js, a different issue than CVE-2007-0123. NOTE: the vendor disputes the severity of the issue, noting that it is the administrator's responsibility to "add file extensions that you may or may not want uploaded." | | 5.0 | CVE-2007-6676 BUGTRAQ BUGTRAQ
| UebiMiau -- Webmail
| Directory traversal vulnerability in error.php in Uebimiau Webmail 2.7.10 and 2.7.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the selected_theme parameter, a different vector than CVE-2007-3172. | | 6.4 | CVE-2008-0140 MILW0RM VIM BID
| UebiMiau -- Webmail
| Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication state variables from being set through HTTP requests, which allows remote attackers to bypass authentication via a sess[auth]=1 parameter settting. NOTE: this can be leveraged to conduct directory traversal attacks without authentication by using CVE-2008-0140. | | 6.4 | CVE-2008-0210 MILW0RM BID
| WebPortal -- WebPortal CMS
| Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote attackers to execute arbitrary SQL commands via the user_name parameter to actions.php, and unspecified other vectors. | | 6.8 | CVE-2008-0142 MILW0RM
| WordPress -- WordPress
| WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database structure. | | 5.0 | CVE-2008-0191 BUGTRAQ FULLDISC OTHER-REF OTHER-REF XF
| WordPress -- WordPress
| Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the popuptitle parameter to (1) wp-admin/post.php or (2) wp-admin/page-new.php. | | 4.3 | CVE-2008-0192 FULLDISC OTHER-REF OTHER-REF BID XF
| WordPress -- WordPress
| Cross-site scripting (XSS) vulnerability in wp-db-backup.php in WordPress 2.0.11 and earlier, and possibly 2.1.x through 2.3.x, allows remote attackers to inject arbitrary web script or HTML via the backup parameter in a wp-db-backup.php action to wp-admin/edit.php. | | 4.3 | CVE-2008-0193 BUGTRAQ FULLDISC OTHER-REF OTHER-REF BID
| WordPress -- WordPress
| WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to certain PHP scripts under wp-admin/, which reveals the path in various error messages. | | 5.0 | CVE-2008-0195 BUGTRAQ FULLDISC OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF
| WordPress -- WordPress
| Multiple directory traversal vulnerabilities in WordPress 2.0.11 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the page parameter to certain PHP scripts under wp-admin/ or (2) the import parameter to wp-admin/admin.php, as demonstrated by discovering the full path via a request for the \..\..\wp-config pathname; and allow remote attackers to modify arbitrary files via a .. (dot dot) in the file parameter to wp-admin/templates.php. | | 5.0 | CVE-2008-0196 BUGTRAQ FULLDISC OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF OTHER-REF
| WordPress -- WP-ContactForm
| Multiple cross-site scripting (XSS) vulnerabilities in wp-contact-form/options-contactform.php in the WP-ContactForm 1.5 alpha and earlier plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) wpcf_email, (2) wpcf_subject, (3) wpcf_question, (4) wpcf_answer, (5) wpcf_success_msg, (6) wpcf_error_msg, or (7) wpcf_msg parameter to wp-admin/admin.php, or (8) the SRC attribute of an IFRAME element. | | 4.3 | CVE-2008-0197 BUGTRAQ FULLDISC OTHER-REF OTHER-REF OTHER-REF OTHER-REF
| WordPress -- WordPress
| Multiple cross-site request forgery (CSRF) vulnerabilities in wp-contact-form/options-contactform.php in the WP-ContactForm 1.5 alpha and earlier plugin for WordPress allow remote attackers to perform actions as administrators via the (1) wpcf_question, (2) wpcf_success_msg, or (3) wpcf_error_msg parameter to wp-admin/admin.php. | | 4.3 | CVE-2008-0198 BUGTRAQ FULLDISC OTHER-REF OTHER-REF OTHER-REF OTHER-REF
| WordPress -- Cryptographp
| Multiple cross-site scripting (XSS) vulnerabilities in cryptographp/admin.php in the Cryptographp 1.2 and earlier plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) cryptwidth, (2) cryptheight, (3) bgimg, (4) charR, (5) charG, (6) charB, (7) charclear, (8) tfont, (9) charel, (10) charelc, (11) charelv, (12) charnbmin, (13) charnbmax, (14) charspace, (15) charsizemin, (16) charsizemax, (17) charanglemax, (18) noisepxmin, (19) noisepxmax, (20) noiselinemin, (21) noiselinemax, (22) nbcirclemin, (23) nbcirclemax, or (24) brushsize parameter to wp-admin/options-general.php. | | 4.3 | CVE-2008-0203 BUGTRAQ FULLDISC OTHER-REF
| WordPress -- Math Comment Spam Protection Plugin
| Multiple cross-site scripting (XSS) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection 2.1 and earlier plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) mcsp_opt_msg_no_answer or (2) mcsp_opt_msg_wrong_answer parameter to wp-admin/options-general.php. | | 4.3 | CVE-2008-0204 BUGTRAQ FULLDISC OTHER-REF
| WordPress -- Math Comment Spam Protection Plugin
| Multiple cross-site request forgery (CSRF) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection 2.1 and earlier plugin for WordPress allow remote attackers to perform actions as administrators via the (1) mcsp_opt_msg_no_answer or (2) mcsp_opt_msg_wrong_answer parameter to wp-admin/options-general.php. | | 4.3 | CVE-2008-0205 BUGTRAQ FULLDISC OTHER-REF
| WordPress -- Captcha
| Multiple cross-site scripting (XSS) vulnerabilities in captcha\captcha.php in the Captcha! 2.5d and earlier plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) captcha_ttffolder, (2) captcha_numchars, (3) captcha_ttfrange, or (4) captcha_secret parameter. | | 4.3 | CVE-2008-0206 BUGTRAQ FULLDISC OTHER-REF
| Xfce -- Xfce
| Stack-based buffer overflow in the Panel (xfce4-panel) component in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via Launcher tooltips. NOTE: a second buffer overflow (over-read) in the xfce_mkdirhier function was also reported, but it might not be exploitable for a crash or code execution, so it is not a vulnerability. | | 5.0 | CVE-2007-6531 OTHER-REF OTHER-REF OTHER-REF
| xine -- xine-lib
| Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party information. | | 6.4 | CVE-2008-0225 OTHER-REF SECUNIA
| XOOPS -- Xoops
| The b_system_comments_show function in htdocs/modules/system/blocks/system_blocks.php in XOOPS before 2.0.18 does not check permissions, which allows remote attackers to read the comments in restricted modules. | | 5.0 | CVE-2007-6675 OTHER-REF OTHER-REF BID SECUNIA
| XOOPS -- XoopsGallery Module
| PHP remote file inclusion vulnerability in xoopsgallery/init_basic.php in the mod_gallery module for XOOPS, when register_globals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter. | | 6.8 | CVE-2008-0138 MILW0RM BID
|