Vuldb Updates

A vulnerability was found in Traccar Server up to 6.1. It has been declared as very critical. This affects an unknown part of the component Administrator Panel Module. Such manipulation leads to use of default credentials. This vulnerability is traded as CVE-2024-7746. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in HCL Unica Platform up to 25.1 and classified as problematic. This issue affects some unknown processing of the component Content Security Policy Handler. The manipulation leads to security check for standard. This vulnerability is traded as CVE-2025-31969. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.15.2. This vulnerability affects the function snd_usbmidi_free of the component ALSA. Executing manipulation can lead to improper initialization. This vulnerability is registered as CVE-2025-38105. The attack requires access to the local network. No exploit is available. You should upgrade the affected component.

A vulnerability, which was classified as problematic, was found in AfterLogic MailBee WebMail 3.4. Impacted is an unknown function of the file check_login.asp. Such manipulation of the argument Username leads to basic cross site scripting. This vulnerability is documented as CVE-2007-2061. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability labeled as problematic has been found in Mambo 4.6.2. This impacts an unknown function of the file index.php. Such manipulation of the argument option leads to cross site scripting. This vulnerability is listed as CVE-2007-6455. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability, which was classified as problematic, has been found in Makale Scripti. Affected is an unknown function of the file ara. The manipulation of the argument ara leads to cross site scripting. This vulnerability is documented as CVE-2007-6673. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability described as critical has been identified in Scriptaty magic photo storage website. This impacts an unknown function. Such manipulation of the argument _config[site_path] leads to file inclusion. This vulnerability is referenced as CVE-2007-0181. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability was found in Maia Mailguard up to 1.0.2. It has been classified as problematic. The impacted element is an unknown function of the file login.php of the component Mailguard. This manipulation of the argument lang causes path traversal. This vulnerability appears as CVE-2007-3619. The attack may be initiated remotely. In addition, an exploit is available. Applying a patch is the recommended action to fix this issue.

A vulnerability identified as problematic has been detected in YaBB 2000-09-01. Affected by this vulnerability is an unknown functionality. The manipulation leads to path traversal. This vulnerability is listed as CVE-2000-0853. The attack may be initiated remotely. In addition, an exploit is available. You should upgrade the affected component.

A vulnerability marked as problematic has been reported in Rasmus J.P. Allenheim SunFTP 1.0 Build 9. This affects an unknown part of the component Connection Handler. This manipulation causes denial of service. This vulnerability is registered as CVE-2000-0855. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability was found in notsoPureEdit 1.4.1 and classified as critical. The affected element is an unknown function of the file templates/template.php. The manipulation of the argument content results in code injection. This vulnerability is identified as CVE-2010-1216. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability classified as critical was found in Nodesforum 1.033/1.045. This vulnerability affects unknown code of the file erase_user_data.php. Such manipulation of the argument _nodesforum_code_path leads to code injection. This vulnerability is uniquely identified as CVE-2010-1351. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability identified as critical has been detected in NKInFoWeb 2.5/5.2.2.0. The affected element is an unknown function of the file loadorder.php. Performing manipulation of the argument id_sp results in sql injection. This vulnerability is identified as CVE-2010-1599. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability was found in Nitropowered NITRO Web Gallery 1.4. It has been declared as critical. The affected element is an unknown function of the file index.php. Such manipulation of the argument PictureId leads to sql injection. This vulnerability is traded as CVE-2010-2141. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability identified as problematic has been detected in NinkoBB 1.3. The impacted element is an unknown function of the file users.php. This manipulation of the argument aim causes cross site scripting. The identification of this vulnerability is CVE-2010-4874. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Microsoft IIS 4.0/5.0. It has been rated as critical. This vulnerability affects unknown code of the component Executable Files Parser. Performing manipulation results in improper privilege management. This vulnerability is reported as CVE-2000-0886. The attack is possible to be carried out remotely. Moreover, an exploit is present. To fix this issue, it is recommended to deploy a patch.

A vulnerability identified as critical has been detected in ISC BIND up to 8.2.2 p6. Impacted is an unknown function of the component SRV Record Handler. The manipulation leads to denial of service. This vulnerability is traded as CVE-2000-0888. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability was found in Microsoft IIS 4.0/5.0. It has been classified as critical. Affected by this issue is some unknown functionality of the component Unicode Handler. This manipulation causes path traversal. This vulnerability is registered as CVE-2000-0884. Remote exploitation of the attack is possible. Furthermore, an exploit is available. This vulnerability has a historic impact because of its background and how it was received. It is suggested to install a patch to address this issue.

A vulnerability marked as problematic has been reported in Mandrakesoft Mandrake Linux 6.1. This affects an unknown function of the file /perl/ of the component mod_perl. The manipulation leads to information disclosure. This vulnerability is listed as CVE-2000-0883. The attack may be initiated remotely. In addition, an exploit is available. It is suggested to upgrade the affected component.

A vulnerability categorized as critical has been discovered in ISC BIND 8.2.2. This issue affects some unknown processing of the component ZXFR Request Handler. Executing manipulation can lead to denial of service. This vulnerability appears as CVE-2000-0887. The attack may be performed from remote. In addition, an exploit is available. It is advisable to upgrade the affected component.