Primary Vendor -- Product | Description | | CVSS Score | Source & Patch Info | AGTC Websolutions -- PHP-AGTC Membership System
| Cross-site scripting (XSS) vulnerability in adduser.php in PHP-AGTC Membership System 1.1a and earlier allows remote attackers to inject arbitrary web script or HTML via the email address (useremail parameter). | | 2.8 | CVE-2006-2687 BUGTRAQ BID FRSIRT SECUNIA
| aMule -- aMule
| Unspecified "information leakage" vulnerabilities in aMuleWeb for AMule before 2.1.2 allow remote attackers to access arbitrary images, including dynamically generated images, via unknown vectors. | | 2.3 | CVE-2006-2691 AMULE BID SECUNIA
| aMule -- aMule
| Multiple unspecified vulnerabilities in aMuleWeb for AMule before 2.1.2 allow remote attackers to read arbitrary image, HTML, or PHP files via unknown vectors, probably related to directory traversal. | | 2.3 | CVE-2006-2692 AMULE BID SECUNIA
| Andrew Godwin -- ByteHoard
| Cross-site scripting (XSS) vulnerability in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via file descriptions. | | 1.4 | CVE-2006-2632 BUGTRAQ OTHER-REF OTHER-REF BID FRSIRT SECUNIA
| Andrew Godwin -- ByteHoard
| Absolute path traversal vulnerability in the copy action in index.php in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to create or overwrite files in other users' directories by specifying the absolute path of the directory in the infolder parameter and simultaneously specifying the filename in the filepath parameter. | | 1.4 | CVE-2006-2633 BUGTRAQ OTHER-REF OTHER-REF BID FRSIRT SECUNIA
| ASPBB -- ASPBB
| Cross-site scripting (XSS) vulnerability in perform_search.asp for ASPBB 0.52 and earlier allows remote attackers to inject arbitrary HTML or web script via the search parameter. | | 1.9 | CVE-2006-2648 BUGTRAQ BID OTHER-REF FRSIRT SECTRACK SECUNIA
| AWStats -- AWStats
| AWStats 6.5, and possibly other versions, allows remote authenticated users to execute arbitrary code by using the configdir parameter to awstats.pl to upload a configuration file whose name contains shell metacharacters, then access that file using the LogFile directive. | | 1.4 | CVE-2006-2644 OTHER-REF OTHER-REF DEBIAN SECUNIA SECUNIA FRSIRT
| CalendarScripts.com -- ChatPat
| SQL injection vulnerability in ChatPat 1.0 allows remote attackers to execute arbitrary SQL commands via the nickname field. | | 2.3 | CVE-2006-2671 BUGTRAQ FRSIRT SECUNIA
| Chipmunk PHP Scripts -- Chipmunk Guestbook
| Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows remote attackers to inject arbitrary web script or HTML via the (1) start parameter in (a) index.php; (2) forumID parameter in index.php, (b) newtopic.php, and (c) reply.php; and (3) ID parameter to (d) edit.php. | | 2.3 | CVE-2006-2757 BUGTRAQ BUGTRAQ SECTRACK
| Circle R -- Monster Top List
| Cross-site scripting (XSS) vulnerability in index.php in Monster Top List (MTL) 1.4 allows remote attackers to inject arbitrary web script or HTML via the user_error_message parameter. | | 2.3 | CVE-2006-2643 BUGTRAQ
| D-Link -- DSA-3100 Airspot Gateway
| Cross-site scripting (XSS) vulnerability in login_error.shtml for D-Link DSA-3100 allows remote attackers to inject arbitrary HTML or web script via an encoded uname parameter. | | 1.9 | CVE-2006-2653 BUGTRAQ EAZEL BID FRSIRT SECTRACK SECUNIA
| Double Precision Incorporated -- Courier MTA
| libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consumption) via unknown vectors involving usernames that contain the "=" (equals) characters, which is not properly handled during encoding. | | 3.3 | CVE-2006-2659 OTHER-REF DEBIAN
| Easy-Content Forums -- Easy-Content Forums
| Multiple SQL injection vulnerabilities in Easy-Content Forums 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) startletter parameter in userview.asp and the (2) forumname parameter in topics.asp. | | 3.3 | CVE-2006-2697 BUGTRAQ
| Eitsop -- My Web Server
| Eitsop My Web Server 1.0 allows remote attackers to cause a denial of service (application crash) via a long GET request. NOTE: CVE analysis suggests that this is a different product, and therefore a different vulnerability, than CVE-2002-1897. | | 2.3 | CVE-2006-2756 BUGTRAQ BUGTRAQ BID SECUNIA
| Epic Designs -- tinyBB
| Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote attackers to execute arbitrary SQL commands via the (1) q parameter in (a) forgot.php, and the (2) username and (3) password parameters in (b) login.php, and other unspecified vectors. | | 2.7 | CVE-2006-2740 BUGTRAQ NUKEDX NUKEDX BID FRSIRT SECTRACK SECUNIA
| Etype -- EServ
| Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the (1) CREATE, (2) SELECT, (3) DELETE, (4) RENAME, (5) COPY or (6) APPEND commands. | | 2.8 | CVE-2006-2308 BUGTRAQ OTHER-REF OTHER-REF BID FRSIRT SECUNIA
| Etype -- EServ
| The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files. | | 1.4 | CVE-2006-2309 BUGTRAQ OTHER-REF OTHER-REF BID FRSIRT SECUNIA
| EVA-Web -- EVA-Web
| An unspecified script in EVA-Web 2.1.2 and earlier, probably index.php, allows remote attackers to obtain the full path of the web server via invalid (1) perso or (2) aide parameters. | | 3.3 | CVE-2006-2690 BLOGSPOT
| FreeBSD -- FreeBSD
| Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences. NOTE: this is similar to CVE-2006-1864, but this is a different implementation of smbfs, so it has a different CVE identifier. | | 3.3 | CVE-2006-2654 FREEBSD BID SECUNIA OSVDB
| FreeType -- FreeType
| ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a crafted font file that triggers a null dereference. | | 2.3 | CVE-2006-2661 RED HAT
| Geeklog -- Geeklog
| Geeklog 1.4.0sr2 and earlier allows remote attackers to obtain the full installation path via a direct request and possibly invalid arguments to (1) layout/professional/functions.php or (2) getimage.php. | | 3.3 | CVE-2006-2698 BUGTRAQ KAPDA GEEKLOG BID FRSIRT SECUNIA
| Groupee -- UBB.threads
| Cross-site scripting (XSS) vulnerability in index.php in UBBThreads 5.x and earlier allows remote attackers to inject arbitrary web script or HTML via the debug parameter, as demonstrated by stealing MD5 hashes of passwords. | | 2.3 | CVE-2006-2755 BUGTRAQ BUGTRAQ OTHER-REF BID
| Hogstorps -- Hogstorp Guestbook
| admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote attackers to delete arbitrary posts via a modified delID parameter. | | 3.3 | CVE-2006-2771 ALTERVISTA FRSIRT SECUNIA BID
| Hogstorps -- Hogstorp Guestbook
| admin/redigera/redigera2.asp in Hogstorps hogstorp Guestbook 2.0 does not verify user credentials, which allows remote attackers to edit arbitrary posts via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 3.3 | CVE-2006-2773 FRSIRT SECUNIA
| Interlink Advantage -- Interlink Advantage
| Cross-site scripting (XSS) vulnerability in news_information.php in Interlink Advantage allows remote attackers to inject arbitrary web script or HTML via the flag parameter. | | 1.9 | CVE-2006-2765 BUGTRAQ MLIST XF
| Jan Chmelik -- Photoalbum B&W
| Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject arbitrary web script or HTML via the pic parameter. | | 1.9 | CVE-2006-2728 BUGTRAQ BID FRSIRT SECUNIA
| Jan Chmelik -- Photoalbum B&W
| Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject arbitrary web script or HTML via the gal parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 1.9 | CVE-2006-2729 FRSIRT SECUNIA
| Jetty -- Jetty
| Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary files via a %2e%2e%5c (encoded ../) in the URL. | | 2.3 | CVE-2006-2758 SECTRACK
| Jetty -- Jetty
| jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations. | | 2.3 | CVE-2006-2759 SECTRACK
| JIWA -- Financials
| JIWA Financials 6.4.14 stores usernames and passwords for all accounts in cleartext in the HR_Staff table in Microsoft SQL Server, and sends the usernames and passwords in cleartext to the application's SQL Server ODBC driver, which might allow context-dependent attackers to obtain the passwords. | | 2.3 | CVE-2006-2719 BUGTRAQ FULLDISC SECUNIA SECTRACK
| Linux -- Linux kernel
| Race condition in Linux kernel 2.6.15 to 2.6.17, when running on SMP platforms, allows local users to cause a denial of service (crash) by creating and exiting a large number of tasks, then accessing the /proc entry of a task that is exiting, which causes memory corruption that leads to a failure in the prune_dcache function or a BUG_ON error in include/linux/list.h. | | 1.9 | CVE-2006-2629 MLIST
| Microsoft -- Internet Explorer
| Buffer overflow in INETCOMM.DLL, as used in Microsoft Internet Explorer 6.0 through 6.0 SP2, Windows Explorer, and possibly other programs, allows remote user-complicit attackers to cause a denial of service (application crash) via a long mhtml URI in the URL value in a URL file. | | 1.9 | CVE-2006-2766 BUGTRAQ BUGTRAQ BUGTRAQ BID FRSIRT SECUNIA
| Mini-Nuke -- Mini-Nuke
| membership.asp in Mini-Nuke 2.3 and earlier uses plaintext security codes, which allows remote attackers to register multiple times via automated scripts. | | 2.3 | CVE-2006-2733 BUGTRAQ OTHER-REF OTHER-REF SECUNIA
| Mini-Nuke -- Mini-Nuke
| enter.asp in Mini-Nuke 2.3 and earlier makes it easier for remote attackers to conduct password guessing attacks by setting the guvenlik parameter to the same value as the hidden gguvenlik parameter, which bypasses a verification step because the gguvenlik parameter is assumed to be immutable by the attacker. | | 2.3 | CVE-2006-2734 BUGTRAQ OTHER-REF OTHER-REF
| Mozilla -- Firefox
| Unspecified versions of Mozilla Firefox allow remote attackers to cause a denial of service (crash) via a web page that contains a large number of nested marquee tags. NOTE: a followup post indicated that the initial report could not be verified. | | 2.3 | CVE-2006-2723 BUGTRAQ BID
| Mozilla -- Firefox Mozilla -- Thunderbird
| The crypto.signText function in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow. | | 2.3 | CVE-2006-2778 OTHER-REF CERT-VN CERT
| Mozilla -- SeaMonkey Mozilla -- Firefox
| Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control. | | 2.3 | CVE-2006-2782 OTHER-REF
| Mozilla -- Firefox Mozilla -- Thunderbird
| Mozilla Firefox and Thunderbird before 1.5.0.4 strips the Unicode Byte-order-Mark (BOM) from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT. | | 2.3 | CVE-2006-2783 OTHER-REF
| Mozilla -- Firefox
| Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 1.5.0.4 allows user-complicit remote attackers to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute contains a Javascript URL, or (2) selecting "Show only this frame" on a frame whose SRC attribute contains a Javascript URL. | | 2.3 | CVE-2006-2785 OTHER-REF
| Neocrome -- Seditio
| Cross-site scripting (XSS) vulnerability in Neocrome Land Down Under (LDU) in Neocrome Seditio 102 allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer field. | | 2.3 | CVE-2006-2634 BUGTRAQ OTHER-REF BID FRSIRT SECUNIA
| Nivisec -- Hacks List
| Directory traversal vulnerability in admin_hacks_list.php in Nivisec Hacks List 1.20 and earlier for phpBB, when register_globals is enabled, allows remote attackers to read arbitrary files via a ".." in the phpEx parameter. | | 2.7 | CVE-2006-2693 NUKEDX FRSIRT SECUNIA BUGTRAQ BID
| Open Searchable Image Catalogue -- Open Searchable Image Catalogue
| Cross-site scripting (XSS) vulnerability in the do_mysql_query function in core.php for Open Searchable Image Catalogue (OSIC) before 0.7.0.1 allows remote attackers to inject arbitrary web scripts or HTML via failed SQL queries, which is reflected in an error message. | | 2.3 | CVE-2006-2750 BUGTRAQ OTHER-REF OTHER-REF OTHER-REF BID SECTRACK SECUNIA
| Open Searchable Image Catalogue -- Open Searchable Image Catalogue
| Cross-site scripting (XSS) vulnerability in Open Searchable Image Catalogue (OSIC) 0.7.0.1 and earlier allows remote attackers to inject arbitrary web scripts or HTML via the item_list parameter in search.php. | | 2.3 | CVE-2006-2751 BUGTRAQ OTHER-REF OTHER-REF OTHER-REF
| OpenLDAP -- OpenLDAP
| Stack-based buffer overflow in st.c in slurpd for OpenLDAP before 2.3.22 might allow attackers to execute arbitrary code via a long hostname. | | 2.3 | CVE-2006-2754 OTHER-REF OTHER-REF OTHER-REF OPENPKG FRSIRT OSVDB SECUNIA
| PHP -- PHP
| The cURL library (libcurl) in PHP 4.4.2 and 5.1.4 allows attackers to bypass safe mode and read files via a file:// request containing null characters. | | 1.6 | CVE-2006-2563 BUGTRAQ BID OTHER-REF FRSIRT SECTRACK SECUNIA
| Php-residence -- Php-residence
| ** UNVERIFIABLE ** NOTE: this issue does not contain any verifiable or actionable details. Cross-site scripting (XSS) vulnerability in Marco M. F. De Santis Php-residence 0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via "any of its input." NOTE: the original disclosure is based on vague researcher claims without vendor acknowledgement; therefore this identifier cannot be linked with any future identifier that identifies more specific vectors. Perhaps this should not be included in CVE. | | 2.3 | CVE-2006-2642 BUGTRAQ BID FRSIRT SECUNIA
| phpFoX -- phpFoX
| phpFoX allows remote authenticated users to modify arbitrary accounts via a modified NATIO cookie value, possibly the phpfox_user parameter. | | 1.4 | CVE-2006-2631 BUGTRAQ FRSIRT SECUNIA XF
| PHPSimpleChoose -- PHPSimpleChoose
| Cross-site scripting (XSS) vulnerability in the input forms in prattmic and Master5006 PHPSimpleChoose 0.3 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the SRC attribute of an IMG element. | | 2.3 | CVE-2006-2639 BUGTRAQ FRSIRT SECUNIA BUGTRAQ
| pppBLOG -- pppBLOG
| Directory traversal vulnerability in randompic.php in pppBLOG 0.3.8 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) sequence in an index of the "file" array parameter, as demonstrated by file[0]. | | 2.7 | CVE-2006-2770 BUGTRAQ ALTERVISTA BID SECUNIA SECTRACK
| PreProjects.com -- Pre Shopping Mall
| Multiple cross-site scripting (XSS) vulnerabilities in Pre Shopping Mall 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter in search.php (the "search box"), the prodid parameter in detail.php, and the (3) cid parameter in products.php. | | 2.3 | CVE-2006-2669 BUGTRAQ FRSIRT SECUNIA XF
| Secure Elements -- C5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR server and client (aka C5 EVM) before 2.8.1 send messages in cleartext, which allows remote attackers to read sensitive vulnerability information. | | 2.3 | CVE-2006-2704 OTHER-REF OTHER-REF CERT-VN CERT-VN FRSIRT SECUNIA
| Secure Elements -- C5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 allows remote attackers to cause an unspecified denial of service via a large number of forged client registration messages. | | 2.3 | CVE-2006-2705 OTHER-REF CERT-VN FRSIRT SECUNIA
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 allows remote attackers to cause a denial of service via forged "session start" messages that cause AVR to connect to arbitrary hosts. | | 2.3 | CVE-2006-2706 OTHER-REF CERT-VN FRSIRT SECUNIA
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients. | | 1.6 | CVE-2006-2707 OTHER-REF CERT-VN FRSIRT SECUNIA
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR client (aka C5 EVM) before 2.8.1 allows remote attackers to read portions of process memory via a modified size for (1) EM_GET_CE_PARAMETER and (2) EM_SET_CE_PARAMETER messages, which leads to a buffer overflow (probably an over-read). | | 2.3 | CVE-2006-2708 OTHER-REF CERT-VN CERT-VN FRSIRT SECUNIA
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 do not validate the source address of a message, which allows remote attackers to (1) execute arbitrary code on a client or (2) forge messages to the server. | | 2.3 | CVE-2006-2709 OTHER-REF OTHER-REF CERT-VN CERT-VN FRSIRT SECUNIA
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications. | | 2.3 | CVE-2006-2710 OTHER-REF CERT-VN FRSIRT SECUNIA
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR (aka C5 EVM) 2.8.1 and earlier, and possibly later 2.8.x releases, uses the same initialization vector and key for each message session, which allows remote attackers to obtain potentially sensitive information about messages. | | 2.3 | CVE-2006-2711 OTHER-REF CERT-VN FRSIRT
| Secure Elements -- Class 5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR (aka C5 EVM) client and server before 2.8.1 do not verify the integrity of a message digest, which allows remote attackers to modify and replay messages. | | 2.3 | CVE-2006-2712 OTHER-REF OTHER-REF CERT-VN CERT-VN FRSIRT SECUNIA
| Secure Elements -- C5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR client (aka C5 EVM) before 2.8.1 generates predictable CEIDs, which allows remote attackers to determine the CEID of a protected asset, which can be used in other attacks against AVR. | | 2.3 | CVE-2006-2713 OTHER-REF CERT-VN FRSIRT SECUNIA
| Secure Elements -- C5 Enterprise Vulnerability Management
| Secure Elements Class 5 AVR client (aka C5 EVM) before 2.8.1 does not validate the CEID of an incoming message, which allows remote attackers to send messages to a protected asset without knowing the proper CEID. | | 2.3 | CVE-2006-2714 OTHER-REF CERT-VN FRSIRT SECUNIA
| Secure Elements -- C5 Enterprise Vulnerability Management
| Unspecified vulnerability in Secure Elements Class 5 AVR client and server (aka C5 EVM) before 2.8.1 allows authenticated attackers to overwrite arbitrary files (1) on a server during an update or (2) on a client via modified pathnames, possibly due to a directory traversal issue. | | 1.4 | CVE-2006-2717 OTHER-REF OTHER-REF CERT-VN CERT-VN FRSIRT SECUNIA
| shadow -- shadow
| useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the mailbox. | | 3.9 | CVE-2006-1174 MANDRIVA BID FRSIRT OTHER-REF SECUNIA
| SiteScape -- SiteScape Forum
| Dispatch.cgi/_user/uservCard/ in SiteScape Forum 7.2 and possibly earlier generates different responses in a way that allows remote attackers to enumerate valid usernames. | | 2.3 | CVE-2006-2676 OTHER-REF SECUNIA XF
| SiteScape -- SiteScape Forum
| SiteScape Forum 7.2 and possibly earlier stores the avf.rc configuraiton file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive path information. | | 2.3 | CVE-2006-2677 OTHER-REF SECUNIA XF
| Snort Project -- Snort
| The HTTP Inspect preprocessor in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration. | | 2.3 | CVE-2006-2769 MLIST DEMARC BID OSVDB SECTRACK BUGTRAQ OTHER-REF SECUNIA
| SuSE -- SuSE Linux Enterprise Server SuSE -- SuSE Novell Linux Desktop
| The RedCarpet command-line client (rug) does not verify SSL certificates from a server, which allows remote attackers to read network traffic and execute commands via a man-in-the-middle (MITM) attack. | | 2.3 | CVE-2006-2703 SUSE BID SECUNIA
| TuttoPhp -- Morris Guestbook TuttoPhp -- Pretty Guestbook TuttoPhp -- Smile Guestbook
| Cross-site scripting (XSS) vulnerability in view.php in TuttoPhp (1) Morris Guestbook 1, (2) Pretty Guestbook 1, and (3) Smile Guestbook 1 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the SRC attribute of an IMG element in the pagina parameter. | | 2.3 | CVE-2006-2637 BUGTRAQ BUGTRAQ BUGTRAQ BID FRSIRT FRSIRT FRSIRT SECUNIA SECUNIA SECUNIA
| Vacation Rentals -- Vacation Rental Script
| Cross-site scripting (XSS) vulnerability in index.php in Vacation Rental Script 1.0 allows remote attackers to inject arbitrary web script or HTML via the obj parameter. | | 1.9 | CVE-2006-2651 BUGTRAQ FRSIRT SECUNIA BID
| WeOnlyDo! Software -- WeOnlyDo! SFTP
| The WeOnlyDo! SFTP (wodSFTP) ActiveX control is marked as safe for scripting, which allows remote attackers to read and write files in arbitrary locations by accessing the control from a web page. | | 3.7 | CVE-2006-1175 CERT-VN
| WordPress -- WordPress
| vars.php in WordPress 2.0.2, possibly when running on Mac OS X, allows remote attackers to spoof their IP address via a PC_REMOTE_ADDR HTTP header, which vars.php uses to redefine $_SERVER['REMOTE_ADDR']. | | 2.3 | CVE-2006-2702 BUGTRAQ ALTERVISTA FRSIRT SECUNIA XF
| Xander Ladage -- GuestbookXL
| Cross-site scripting (XSS) vulnerability in GuestbookXL 1.3 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an IMG tag in a comment field to (1) guestwrite.php or (2) guestbook.php. | | 2.3 | CVE-2006-2764 BUGTRAQ XF
| ZipCentral -- ZipCentral
| Stack-based buffer overflow in ZipCentral 4.01 allows remote user-complicit attackers to execute arbitrary code via a ZIP archive containing a long filename. | | 1.9 | CVE-2006-2439 OTHER-REF BID FRSIRT SECUNIA BUGTRAQ SECTRACK
|