CVE-2009-3327

This is an entry in the Common Vulnerability Index under number CVE-2009-3327. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2009-3327

Description: Multiple SQL injection vulnerabilities in WX-Guestbook 1.1.208 allow remote attackers to execute arbitrary SQL commands via the (1) QUERY parameter to search.php and (2) USERNAME parameter to login.php.

Continue Reading …

CVE-2016-8534

This is an entry in the Common Vulnerability Index under number CVE-2016-8534. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2016-8534

Description: A remote privilege elevation vulnerability in HPE Matrix Operating Environment version 7.6 was found.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2017-7930

This is an entry in the Common Vulnerability Index under number CVE-2017-7930. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2017-7930

Description: An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. PI Data Archive has protocol flaws with the potential to expose change records in the clear and allow a malicious party to spoof a server within a collective.

Continue Reading …

CVE-2008-1061

This is an entry in the Common Vulnerability Index under number CVE-2008-1061. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2008-1061

Description: Multiple cross-site scripting (XSS) vulnerabilities in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) text parameter to (a) warning.php,

Continue Reading …

CVE-2013-2341

This is an entry in the Common Vulnerability Index under number CVE-2013-2341. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2013-2341

Description: Unspecified vulnerability on the HP ProCurve JC###A, JC###B, JD###A, JD###B, JE###A, JF###A, JF###B, JF###C, JG###A, 658250-B21, and 658247-B21; HP 3COM routers and switches; and HP H3C routers and switches allows remote authenticated users to execute arbitrary code or obtain sensitive information via unknown vectors.

Continue Reading …

CVE-2006-6800

This is an entry in the Common Vulnerability Index under number CVE-2006-6800. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2006-6800

Description: PHP remote file inclusion in eventcal/mod_eventcal.php in the event module 1.0 for Limbo CMS allows remote attackers to execute arbitrary PHP code via a URL in the lm_absolute_path parameter.

Continue Reading …

CVE-2001-0815

This is an entry in the Common Vulnerability Index under number CVE-2001-0815. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2001-0815

Description: Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code via an HTTP request for a long filename that ends in a .pl extension.

Continue Reading …

CVE-2006-3526

This is an entry in the Common Vulnerability Index under number CVE-2006-3526. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2006-3526

Description: Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Sport-slo Advanced Guestbook 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) name and (2) form parameters.

Continue Reading …

CVE-2004-1603

This is an entry in the Common Vulnerability Index under number CVE-2004-1603. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2004-1603

Description: cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to (1) read arbitrary files via the backup feature or (2) chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled.

Continue Reading …