CVE-2011-3394

This is an entry in the Common Vulnerability Index under number CVE-2011-3394. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2011-3394

Description: SQL injection vulnerability in findagent.php in MYRE Real Estate Software allows remote attackers to execute arbitrary SQL commands via the page parameter.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2007-1829

This is an entry in the Common Vulnerability Index under number CVE-2007-1829. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2007-1829

Description: Multiple unspecified vulnerabilities in web-app.net WebAPP have unknown impact and attack vectors, described as “[having] other [security] issues too, not as bad as letting users take over your admin account,

Continue Reading …

CVE-2006-2313

This is an entry in the Common Vulnerability Index under number CVE-2006-2313. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2006-2313

Description: PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications via invalid encodings of multibyte characters,

Continue Reading …

CVE-2016-8435

This is an entry in the Common Vulnerability Index under number CVE-2016-8435. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2016-8435

Description: An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel.

Continue Reading …

CVE-2010-1271

This is an entry in the Common Vulnerability Index under number CVE-2010-1271. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2010-1271

Description: SQL injection vulnerability in showplugs.php in smartplugs 1.3 allows remote attackers to execute arbitrary SQL commands via the domain parameter.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2002-0052

This is an entry in the Common Vulnerability Index under number CVE-2002-0052. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2002-0052

Description: Internet Explorer 6.0 and earlier does not properly handle VBScript in certain domain security checks, which allows remote attackers to read arbitrary files.

Status: Entry

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2006-5240

This is an entry in the Common Vulnerability Index under number CVE-2006-5240. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2006-5240

Description: PHP remote file inclusion vulnerability in engine/require.php in Docmint 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the MY_ENV[BASE_ENGINE_LOC] parameter.

Continue Reading …

CVE-1999-1259

This is an entry in the Common Vulnerability Index under number CVE-1999-1259. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-1999-1259

Description: Microsoft Office 98, Macintosh Edition, does not properly initialize the disk space used by Office 98 files and effectively inserts data from previously deleted files into the Office file,

Continue Reading …

CVE-2017-7865

This is an entry in the Common Vulnerability Index under number CVE-2017-7865. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2017-7865

Description: FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideo_decode_block_opcode_0xA function in libavcodec/interplayvideo.c and the avcodec_align_dimensions2 function in libavcodec/utils.c.

Continue Reading …

CVE-2012-1023

This is an entry in the Common Vulnerability Index under number CVE-2012-1023. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2012-1023

Description: Open redirect vulnerability in admin/index.php in 4images 1.7.10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter.

Continue Reading …