[CLOSE] OSVDB ID : 29873 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29874 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29875 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29876 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29877 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29878 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29879 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbb[home_path] parameter in files in the modules directory including (1) birstday/birst.php (2) birstday/select.php, (3) birstday/profile_show.php, (4) newusergreatings/pm_newreg.php, (5) punish/p_error.php, (6) punish/profile.php, and (7) threadstop/threadstop.php. NOTE: the (8) modules/userstop/userstop.php vector might overlap CVE-2006-4488, although it is for a slightly different product from the same vendor.

[CLOSE] OSVDB ID : 29880 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in HLStats 1.34 allows remote attackers to inject arbitrary web script or HTML via the (1) game parameter in players mode, the (2) weapon parameter in weaponinfo mode, the (3) st parameter in search mode, the (4) action parameter in actioninfo mode, and the (5) map parameter in mapinfo mode.

[CLOSE] OSVDB ID : 29881 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to inject arbitrary web script or HTML via the comment parameter.

[CLOSE] OSVDB ID : 29882 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 29883 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) about, (2) again, (3) lastname, (4) email, (5) password, (6) album, (7) id, (8) table, (9) desc, (10) doc, (11) mname, (12) max, (13) htpl, (14) pheader, and possibly other parameters.

[CLOSE] OSVDB ID : 29884 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) about, (2) album, (3) id, (4) use, (5) desc, (6) doc, (7) mname, (8) max, and possibly other parameters.

[CLOSE] OSVDB ID : 29885 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : ezPortal/ztml CMS 1.0 allows remote attackers to bypass authentication controls via a direct request to the "Administration Area" script.

[CLOSE] OSVDB ID : 33795 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in John Himmelman (aka DaRk2k1) PowerPortal 1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to registering a user. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 31975 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in PHP Advanced Transfer Manager (phpAtm) 1.21 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the include_location parameter in (1) confirm.php or (2) login.php. NOTE: the include_location parameter to index.php is already covered by CVE-2005-1681.

[CLOSE] OSVDB ID : 31976 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in PHP Advanced Transfer Manager (phpAtm) 1.21 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the include_location parameter in (1) confirm.php or (2) login.php. NOTE: the include_location parameter to index.php is already covered by CVE-2005-1681.

[CLOSE] OSVDB ID : 28833 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Incomplete blacklist vulnerability in the nk_CSS function in nuked.php in Nuked-Klan 1.7 SP4.3 allows remote attackers to bypass anti-XSS features and inject arbitrary web script or HTML via JavaScript in an attribute value that is not in the blacklist, as demonstrated using the STYLE attribute of a B element.

[CLOSE] OSVDB ID : 30837 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in admin/global.php (aka the Admin CP login form) in MyBB (aka MyBulletinBoard) 1.1.7 allows remote attackers to inject arbitrary web script or HTML via the query string ($_SERVER[PHP_SELF]).

[CLOSE] OSVDB ID : 30838 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.1.7 allows remote attackers to inject arbitrary web script or HTML via a url BBCode tag that contains a javascript URI with an SGML numeric character reference and an embedded space, as demonstrated using "java& #115;cript," a different vulnerability than CVE-2006-3761.

[CLOSE] OSVDB ID : 29046 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : CHXO Feedsplitter 2006-01-21 allows remote attackers to read the source code of feedsplitter.php via the showsource function. NOTE: this issue is not a vulnerability in standard distributions, but could be an issue if the source has been modified.

[CLOSE] OSVDB ID : 29047 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in CHXO Feedsplitter 2006-01-21 allows remote attackers to read arbitrary XML files via .. (dot dot) sequences in the format parameter with a leading ".", which bypasses a security check.

[CLOSE] OSVDB ID : 29048 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Eval injection vulnerability in CHXO Feedsplitter 2006-01-21 allows remote attackers to execute arbitrary PHP code via (1) the file specified as the value of the format parameter, and possibly (2) the RSS feed.

[CLOSE] OSVDB ID : 29049 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in CHXO Feedsplitter 2006-01-21 allows remote attackers to inject arbitrary web script or HTML via the RSS feed.

[CLOSE] OSVDB ID : 28307 - Disclosed: 2006-08-30

Description:

The vulnerability is caused due to improper verification when adding users. This can be exploited by an administrative user of a list to add a new administrative user to another list on the same server by manipulating the "MEMBERS_.List_" parameter.

[CLOSE] OSVDB ID : 30971 - Disclosed: 2006-08-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in LFXlib/access_manager.php in Lanifex Database of Managed Objects (DMO) 2.3 Beta and earlier allows remote attackers to execute arbitrary PHP code via the _incMgr parameter.

[CLOSE] OSVDB ID : 28278 - Disclosed: 2006-08-30

Description:

Xbiff 2 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to an error in the configuration routine which creates .xbiff2rc with file permissions set to 755, which will disclose user's POP or IMAP credentials resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 28269 - Disclosed: 2006-08-30

Description:

GTetrinet contains multiple flaws related to out-of-bounds array indexing that may allow an attacker to execute arbitrary code. The flaw exists in tetrinet.c, where a remote attacker may specify a negative number of players, which is used as an array index.

[CLOSE] OSVDB ID : 28275 - Disclosed: 2006-08-30

Description:

AIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges and execute arbitrary code with root privileges. The issue is triggered due to an unspecified error in 'dtterm'. This flaw may lead to a loss of Integrity.

[CLOSE] OSVDB ID : 28306 - Disclosed: 2006-08-30

Description:

LearnCenter contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'id' variable upon submission to the learncenter.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 28302 - Disclosed: 2006-08-30

Description:

Pheap contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to config.php not properly sanitizing user input supplied to the 'lpref' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 33485 - Disclosed: 2006-08-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 28310 - Disclosed: 2006-08-30

Description:

MyBB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the input passed to the 'url' BBCode tag upon submission. This could allow a user to create a specially crafted input that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 28311 - Disclosed: 2006-08-30

Description:

MyBB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the input passed to the 'admin/index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 28272 - Disclosed: 2006-08-30

Description:

OpenVMS contains a flaw that may lead to an unauthorized password exposure. It is possible for passwords to be written to the audit log in cleartext due to an error in the 'NET$SESSION_CONTROL' module when a connection attempt with a correct password is made after a 'network breakin' event, which may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 28271 - Disclosed: 2006-08-30

Description:

Freekot contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'login_verif.asp' script not properly sanitizing user-supplied input to the 'login' and 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 29872 - Disclosed: 2006-08-29

Description:

ModuleBased CMS has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to multiple scripts not properly sanitizing user input supplied to the '_SERVER' variable. However, subsequent examination by multiple researchers indicate that an attacker can not manipulate the variable as stated.

[CLOSE] OSVDB ID : 42095 - Disclosed: 2006-08-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31301 - Disclosed: 2006-08-29

Description:

YACS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'context[path_to_root]' variable upon submission to the 'articles/populate.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 31302 - Disclosed: 2006-08-29

Description:

YACS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'context[path_to_root]' variable upon submission to the 'categories/category.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 31303 - Disclosed: 2006-08-29

Description:

YACS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'context[path_to_root]' variable upon submission to the 'categories/populate.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.