CVE-2005-0682

Cross-site scripting (XSS) vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs.

Publication date: Mon, 02 May 2005 09:00:00 +0000

Cyber News related to CVE-2005-0682

CVE-2005-0682 - Cross-site scripting (XSS) vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs. ...
16 years ago

CVE-2019-0689 - An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0692, ...
5 years ago

CVE-2019-0692 - An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, ...
5 years ago

CVE-2019-0693 - An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, ...
5 years ago

CVE-2019-0694 - An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, ...
5 years ago

CVE-2019-0682 - An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0689, CVE-2019-0692, ...
5 years ago

CVE-2016-0689 - Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, ...
3 years ago

CVE-2016-0682 - Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, ...
3 years ago

CVE-2016-0692 - Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, ...
3 years ago

CVE-2016-0694 - Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, ...
3 years ago

CVE-2016-3418 - Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, ...
3 years ago

CVE-2020-0679 - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2020-0682 - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2020-0680 - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2003-0682 - "Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695. ...
6 years ago

CVE-2002-1790 - The SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote attackers to bypass anti-relaying rules and send spam or spoofed messages via encapsulated SMTP addresses, a similar vulnerability to CVE-1999-0682. ...
4 years ago

CVE-2021-0682 - In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of notification data due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User ...
2 years ago

CVE-2000-0682 - BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /ConsoleHelp/ into the URL, which invokes the FileServlet. ...
16 years ago

CVE-2010-0682 - WordPress 2.9 before 2.9.2 allows remote authenticated users to read trash posts from other authors via a direct request with a modified p parameter. ...
13 years ago

CVE-2012-0682 - WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in ...
12 years ago

CVE-2013-0682 - Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 do not properly handle exceptions, which allows remote attackers to cause a denial of ...
11 years ago

CVE-2015-0682 - Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to execute arbitrary code by visiting a "deprecated page," aka Bug ID CSCup90168. ...
9 years ago

CVE-2004-0682 - comersus_gatewayPayPal.asp in Comersus Cart 5.09, and possibly other versions before 5.098, allows remote attackers to change the prices of items by directly modifying them in the URL. ...
7 years ago

CVE-2006-0682 - Multiple cross-site scripting (XSS) vulnerabilities in bbcodes system in e107 before 0.7.2 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors. ...
7 years ago

CVE-2008-0682 - SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin before 3.72 for Wordpress allows remote attackers to execute arbitrary SQL commands via the id parameter. ...
7 years ago

Latest Cyber News

CVE-2025-0391 - 1 day ago
CVE-2024-12877 - 1 day ago
CVE-2024-42175 - 1 day ago
CVE-2025-0390 - 1 day ago
CVE-2024-12407 - 1 day ago
CVE-2024-12412 - 1 day ago
CVE-2024-12519 - 1 day ago
CVE-2024-12520 - 1 day ago
CVE-2024-12527 - 1 day ago
CVE-2024-11758 - 1 day ago
CVE-2024-11874 - 1 day ago
CVE-2024-11892 - 1 day ago
CVE-2024-11915 - 1 day ago
CVE-2024-12116 - 1 day ago
CVE-2024-11386 - 1 day ago
CVE-2024-42174 - 1 day ago
CVE-2024-42171 - 1 day ago
CVE-2024-42172 - 1 day ago
CVE-2024-42173 - 1 day ago
CVE-2024-42170 - 1 day ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2024-13318 - 2 days ago
CVE-2025-23016 - 2 days ago
CVE-2024-57822 - 1 day ago
CVE-2024-57823 - 1 day ago
CVE-2024-41787 - 1 day ago
CVE-2024-57686 - 1 day ago
CVE-2024-57687 - 1 day ago
CVE-2025-22946 - 1 day ago
CVE-2025-23022 - 1 day ago
CVE-2024-25371 - 1 day ago
CVE-2024-29970 - 1 day ago
CVE-2024-29971 - 1 day ago
CVE-2024-46210 - 1 day ago
CVE-2024-50807 - 1 day ago
CVE-2024-56511 - 1 day ago
CVE-2025-22152 - 1 day ago
CVE-2025-22596 - 1 day ago
CVE-2025-22597 - 1 day ago
CVE-2025-22598 - 1 day ago
CVE-2025-22599 - 1 day ago