CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In July 2005

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
201 CVE-2005-2165 Exec Code 2005-07-06 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
read.cgi in GlobalNoteScript allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameters.
202 CVE-2005-2164 Exec Code Sql 2005-07-06 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in Covide Groupware-CRM allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
203 CVE-2005-2163 XSS 2005-07-06 2016-10-18
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in index.php in AutoIndex PHP Script 1.5.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
204 CVE-2005-2162 Exec Code File Inclusion 2005-07-06 2016-10-18
5.0
None Remote Low Not required None Partial None
PHP remote file inclusion vulnerability in form.inc.php3 in MyGuestbook 0.6.1 allows remote attackers to execute arbitrary PHP code via the lang parameter.
205 CVE-2005-2161 XSS 2005-07-06 2016-10-18
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in phpBB 2.0.16 allows remote attackers to inject arbitrary web script or HTML via nested [url] tags.
206 CVE-2005-2160 +Info 2005-07-06 2016-10-18
5.0
None Remote Low Not required Partial None None
IMail stores usernames and passwords in cleartext in a cookie, which allows remote attackers to obtain sensitive information.
207 CVE-2005-2159 DoS 2005-07-06 2016-10-18
5.0
None Remote Low Not required None None Partial
mshftp.dll in PlanetDNS PlanetFileServer 2.0.1.3 allows remote attackers to cause a denial of service (application crash) via a long request.
208 CVE-2005-2158 2005-07-06 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
A regression error in the embedded HSQLDB in JBoss jBPM 2.0 allows remote attackers to execute arbitrary comands, a re-introduction of a vulnerability that was originally identified by CVE-2003-0845.
209 CVE-2005-2157 Exec Code File Inclusion 2005-07-06 2011-03-08
5.0
None Remote Low Not required None Partial None
PHP remote file inclusion vulnerability in survey.inc.php for nabopoll 1.2 allows remote attackers to execute arbitrary PHP code via the path parameter.
210 CVE-2005-2156 Exec Code Sql 2005-07-06 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in news.php in PHPNews 1.2.5 allows remote attackers to execute arbitrary SQL commands via the prevnext parameter.
211 CVE-2005-2155 Exec Code File Inclusion 2005-07-06 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
PHP remote file inclusion vulnerability in EasyPHPCalendar 6.1.5 and earlier allows remote attackers to execute arbitrary code via the serverPath parameter.
212 CVE-2005-2154 File Inclusion 2005-07-06 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
PHP local file inclusion vulnerability in (1) view.php and (2) open.php in osTicket 1.3.1 beta and earlier allows remote attackers to include and possibly execute arbitrary local files via the inc parameter.
213 CVE-2005-2153 Exec Code Sql 2005-07-06 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in class.ticket.php in osTicket 1.3.1 beta and earlier allows remote attackers to execute arbitrary SQL commands via the ticket variable.
214 CVE-2005-2152 Exec Code Sql 2005-07-06 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in Geeklog before 1.3.11 allows remote attackers to execute arbitrary SQL commands via user comments for an article.
215 CVE-2005-2151 Mem. Corr. 2005-07-06 2008-09-05
5.0
None Remote Low Not required None Partial None
spf.c in Courier Mail Server does not properly handle DNS failures when looking up Sender Policy Framework (SPF) records, which could allow attackers to cause memory corruption.
216 CVE-2005-2150 2005-07-11 2017-07-11
5.0
None Remote Low Not required Partial None None
Windows NT 4.0 and Windows 2000 before URP1 for Windows 2000 SP4 does not properly prevent NULL sessions from accessing certain alternate named pipes, which allows remote attackers to (1) list Windows services via svcctl or (2) read eventlogs via eventlog.
217 CVE-2005-2149 +Priv Sql 2005-07-06 2011-03-08
10.0
None Remote Low Not required Complete Complete Complete
config.php in Cacti 0.8.6e and earlier allows remote attackers to set the no_http_headers switch, then modify session information to gain privileges and disable the use of addslashes to conduct SQL injection attacks.
218 CVE-2005-2148 Exec Code 2005-07-06 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Cacti 0.8.6e and earlier does not perform proper input validation to protect against common attacks, which allows remote attackers to execute arbitrary commands or SQL by sending a legitimate value in a POST request or cookie, then specifying the attack string in the URL, which causes the get_request_var function to return the wrong value in the $_REQUEST variable, which is cleansed while the original malicious $_GET value remains unmodified, as demonstrated in (1) graph_image.php and (2) graph.php.
219 CVE-2005-2147 2005-07-06 2008-09-05
6.4
None Remote Low Not required Partial Partial None
Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.
220 CVE-2005-2146 2005-07-05 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server.
221 CVE-2005-2145 Bypass 2005-07-05 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
The kernel driver in Prevx Pro 2005 1.0 does not verify the source of certain messages, which allows local users to bypass protection by sending certain messages to the driver, as demonstrated by sending an "allow" message to bypass a warning message.
222 CVE-2005-2144 Bypass 2005-07-05 2008-09-05
2.1
None Local Low Not required None Partial None
Prevx Pro 2005 1.0 allows local users to bypass file protection and modify files by using MapViewOfFile to perform memory mapping on the file.
223 CVE-2005-2143 DoS 2005-07-05 2008-09-05
5.0
None Remote Low Not required None None Partial
Microsoft Front Page allows attackers to cause a denial of service (crash) via a crafted style tag in a web page.
224 CVE-2005-2142 Dir. Trav. 2005-07-05 2008-09-05
2.1
None Local Low Not required Partial None None
Directory traversal vulnerability in Golden FTP Server 2.60 allows remote authenticated attackers to list arbitrary directories via a "\.." (backslash dot dot) in an LS (LIST) command.
225 CVE-2005-2141 DoS Overflow 2005-07-05 2008-09-05
5.0
None Remote Low Not required None None Partial
TCP Chat 1.0 allows remote attackers to cause a denial of service (crash) via a long string to the chat service, possibly triggering a buffer overflow.
226 CVE-2005-2140 Dir. Trav. 2005-07-05 2008-09-05
5.0
None Remote Low Not required Partial None None
Directory traversal vulnerability in default.asp for FSboard 2.0 allows remote attackers to read arbitrary files via ".." sequences in the filename parameter.
227 CVE-2005-2139 Exec Code File Inclusion 2005-07-05 2011-03-08
5.0
None Remote Low Not required None Partial None
PHP remote file inclusion vulnerability in user_check.php for Pavsta Auto Site allows remote attackers to execute arbitrary PHP code via the sitepath parameter.
228 CVE-2005-2138 XSS 2005-07-05 2008-09-05
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in index.php in Comdev eCommerce 3.0 and 3.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the onMouseOver event of an "A" tag in a review message.
229 CVE-2005-2137 2005-07-05 2008-09-05
5.0
None Remote Low Not required Partial None None
Unknown vulnerability in NateOn Messenger 3.0 allows remote attackers to list arbitrary directories via unknown attack vectors.
230 CVE-2005-2136 Exec Code 2005-07-05 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Raritan Dominion SX (DSX) Console Servers DSX16, DSX32, DSX4, DSX8, and DSXA-48 set (1) world-readable permissions for /etc/shadow and (2) world-writable permissions for /bin/busybox, which allows local users to obtain hashed passwords or execute arbitrary code as other users.
231 CVE-2005-2135 Exec Code Sql 2005-07-05 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in verify.asp in EtoShop Dynamic Biz Website Builder (QuickWeb) 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) T1 or (2) T2 parameters.
232 CVE-2005-2134 DoS 2005-07-05 2008-09-10
2.1
None Local Low Not required None None Partial
The (1) clcs and (2) emuxki drivers in NetBSD 1.6 through 2.0.2 allow local users to cause a denial of service (kernel crash) by using the set-parameters ioctl on an audio device to change the block size and set the pause state to "unpaused" in the same ioctl, which causes a divide-by-zero error.
233 CVE-2005-2133 2005-07-05 2008-09-10
2.1
None Local Low Not required None Partial None
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-1915. Reason: This candidate is a duplicate of CVE-2005-1915. Notes: All CVE users should reference CVE-2005-1915 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
234 CVE-2005-2115 DoS 2005-07-05 2016-10-18
5.0
None Remote Low Not required None None Partial
Soldier of Fortune II 1.02x and 1.03 allows remote attackers to cause a denial of service (server crash) via a large ID value in the ignore command, which is used as an array index and causes an out-of-bounds operation.
235 CVE-2005-2114 DoS 2005-07-05 2017-10-11
5.0
None Remote Low Not required None None Partial
Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and K-Meleon 0.9, and possibly other products that use the Gecko engine, allow remote attackers to cause a denial of service (application crash) via JavaScript that repeatedly calls an empty function.
236 CVE-2005-2113 Exec Code Sql Bypass 2005-07-05 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in the loginUser function in the XMLRPC server in XOOPS 2.0.11 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via crafted values in an XML file, as demonstrated using the blogger.getPost method.
237 CVE-2005-2112 XSS 2005-07-05 2016-10-18
4.3
None Remote Medium Not required None Partial None
Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.0.11 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) order parameter to edit.php or (2) cid parameter to comment_edit.php.
238 CVE-2005-2111 Exec Code 2005-07-05 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
login.cgi in Community Link Pro Web Editor allows remote attackers to execute arbitrary commands via the file parameter.
239 CVE-2005-2110 +Info 2005-07-05 2018-10-19
5.0
None Remote Low Not required Partial None None
WordPress 1.5.1.2 and earlier allows remote attackers to obtain sensitive information via (1) a direct request to menu-header.php or a "1" value in the feed parameter to (2) wp-atom.php, (3) wp-rss.php, or (4) wp-rss2.php, which reveal the path in an error message. NOTE: vector [1] was later reported to also affect WordPress 2.0.1.
240 CVE-2005-2109 2005-07-05 2016-10-18
5.0
None Remote Low Not required None Partial None
wp-login.php in WordPress 1.5.1.2 and earlier allows remote attackers to change the content of the forgotten password e-mail message via the message variable, which is not initialized before use.
241 CVE-2005-2108 Exec Code Sql 2005-07-05 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.
242 CVE-2005-2107 XSS 2005-07-05 2016-10-18
4.3
None Remote Medium Not required None Partial None
Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.
243 CVE-2005-2106 Exec Code 2005-07-05 2016-10-18
5.0
None Remote Low Not required None Partial None
Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting.
244 CVE-2005-2105 Bypass 2005-07-05 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Cisco IOS 12.2T through 12.4 allows remote attackers to bypass Authentication, Authorization, and Accounting (AAA) RADIUS authentication, if the fallback method is set to none, via a long username.
245 CVE-2005-2096 DoS Overflow 2005-07-06 2018-10-19
7.5
None Remote Low Not required Partial Partial Partial
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.
246 CVE-2005-2095 XSS 2005-07-13 2017-10-11
4.3
None Remote Medium Not required Partial None None
options_identities.php in SquirrelMail 1.4.4 and earlier uses the extract function to process the $_POST variable, which allows remote attackers to modify or read the preferences of other users, conduct cross-site scripting XSS) attacks, and write arbitrary files.
247 CVE-2005-2094 XSS Bypass 2005-07-05 2017-07-11
4.3
None Remote Medium Not required None Partial None
Sun SunONE web server 6.1 SP1 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes SunONE to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
248 CVE-2005-2093 XSS Bypass 2005-07-05 2017-07-11
4.3
None Remote Medium Not required None Partial None
Oracle 9i Application Server (Oracle9iAS) 9.0.2 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Application Server to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
249 CVE-2005-2092 XSS Bypass 2005-07-05 2017-07-11
4.3
None Remote Medium Not required None Partial None
BEA Systems WebLogic 8.1 SP1 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes WebLogic to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
250 CVE-2005-2091 XSS Bypass 2005-07-05 2017-07-11
4.3
None Remote Medium Not required None Partial None
IBM WebSphere 5.1 and WebSphere 5.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes WebSphere to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
Total number of vulnerabilities : 289   Page : 1 2 3 4 5 (This Page)6
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.