CVE-2005-0802

Cross-site scripting (XSS) vulnerability in search.asp in ACS Blog 0.8 through 1.1b allows remote attackers to execute arbitrary web script or HTML via the search parameter.

Publication date: Mon, 02 May 2005 09:00:00 +0000

Cyber News related to CVE-2005-0802

CVE-2005-0802 - Cross-site scripting (XSS) vulnerability in search.asp in ACS Blog 0.8 through 1.1b allows remote attackers to execute arbitrary web script or HTML via the search parameter. ...
7 years ago

CVE-2020-0845 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2020-0803 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2020-0804 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2020-0778 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2020-0802 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
3 years ago

CVE-2018-0802 - Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption ...
4 years ago

CVE-2019-0849 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0802. ...
4 years ago

CVE-2019-0802 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0849. ...
4 years ago

CVE-2004-0802 - Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817. ...
7 years ago

CVE-2011-0814 - Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability ...
6 years ago

CVE-2011-0802 - Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability ...
6 years ago

CVE-2003-0802 - Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . (dot). ...
16 years ago

CVE-2009-0802 - Qbik WinGate, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and ...
15 years ago

CVE-2010-0802 - SQL injection vulnerability in index.php in (nv2) Awards 1.1.0, a modification for Invision Power Board, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action. ...
14 years ago

CVE-2012-0802 - Multiple buffer overflows in Spamdyke before 4.3.0 might allow remote attackers to execute arbitrary code via vectors related to "serious errors in the usage of snprintf()/vsnprintf()" in which the return values may be larger than the size of ...
1 year ago

CVE-2014-0802 - Directory traversal vulnerability in the aokitaka ZIP with Pass application 4.5.7 and earlier, and ZIP with Pass Pro application 6.3.8 and earlier, for Android allows attackers to overwrite or create arbitrary files via unspecified vectors. ...
10 years ago

CVE-2000-0802 - The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the registry key that starts BAIR. ...
8 years ago

CVE-2002-0802 - The multibyte support in PostgreSQL 6.5.x with SQL_ASCII encoding consumes an extra character when processing a character that cannot be converted, which could remove an escape character from the query and make the application subject to SQL ...
8 years ago

CVE-2006-0802 - Cross-site scripting (XSS) vulnerability in the NS-Languages module for PostNuke 0.761 and earlier, when magic_quotes_gpc is enabled, allows remote attackers to inject arbitrary web script or HTML via the language parameter in a missing or ...
7 years ago

CVE-2008-0802 - SQL injection vulnerability in index.php in the MediaSlide (com_mediaslide) 0.5 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the albumnum parameter in a contact action. ...
7 years ago

CVE-2015-0802 - Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content ...
6 years ago

CVE-2016-0802 - The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control ...
5 years ago

CVE-2017-0802 - A elevation of privilege vulnerability in the MediaTek kernel. Product: Android. Versions: Android kernel. Android ID: A-36232120. References: M-ALPS03384818. ...
5 years ago

CVE-1999-0802 - Buffer overflow in Internet Explorer 5 allows remote attackers to execute commands via a malformed Favorites icon. ...
3 years ago

Latest Cyber News

CVE-2024-31892 - 1 day ago
CVE-2024-31891 - 1 day ago
CVE-2024-11721 - 1 day ago
CVE-2024-11720 - 1 day ago
CVE-2024-12446 - 1 day ago
CVE-2024-12628 - 1 day ago
CVE-2024-11711 - 1 day ago
CVE-2024-11712 - 1 day ago
CVE-2024-11713 - 1 day ago
CVE-2024-11714 - 1 day ago
CVE-2024-11715 - 1 day ago
CVE-2024-11710 - 1 day ago
CVE-2024-10690 - 1 day ago
CVE-2024-11752 - 1 day ago
CVE-2024-12422 - 1 day ago
CVE-2024-12459 - 1 day ago
CVE-2024-12474 - 1 day ago
CVE-2024-12501 - 1 day ago
CVE-2024-10646 - 1 day ago
CVE-2024-12578 - 1 day ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2022-43472 - 1 day ago
CVE-2022-44578 - 1 day ago
CVE-2022-45806 - 1 day ago
CVE-2022-45819 - 1 day ago
CVE-2022-45826 - 1 day ago
CVE-2022-45840 - 1 day ago
CVE-2022-45841 - 1 day ago
CVE-2022-46795 - 1 day ago
CVE-2022-46796 - 1 day ago
CVE-2022-46807 - 1 day ago
CVE-2022-46811 - 1 day ago
CVE-2022-46838 - 1 day ago
CVE-2022-46840 - 1 day ago
CVE-2022-46846 - 1 day ago
CVE-2022-47168 - 1 day ago
CVE-2022-47176 - 1 day ago
CVE-2022-47182 - 1 day ago
CVE-2022-47429 - 1 day ago
CVE-2022-47594 - 1 day ago
CVE-2023-22697 - 1 day ago