CVE-2005-1587

Cross-site scripting (XSS) vulnerability in index.php for Quick.cart 0.3.0 allows remote attackers to inject arbitrary web script or HTML via the sWord parameter.

Publication date: Sat, 14 May 2005 09:00:00 +0000

Cyber News related to CVE-2005-1587

CVE-2005-1587 - Cross-site scripting (XSS) vulnerability in index.php for Quick.cart 0.3.0 allows remote attackers to inject arbitrary web script or HTML via the sWord parameter. ...
16 years ago

CVE-2012-1587 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2011-4944. Reason: This candidate is a duplicate of CVE-2011-4944. Notes: All CVE users should reference CVE-2011-4944 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

CVE-2011-1765 - Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.5, when Internet Explorer 6 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an uploaded file accessed with a dangerous extension such as .shtml ...
2 years ago

CVE-2007-0805 - The ps (/usr/ucb/ps) command on HP Tru64 UNIX 5.1 1885 allows local users to obtain sensitive information, including environment variables of arbitrary processes, via the "auxewww" argument, a similar issue to CVE-1999-1587. ...
6 years ago

CVE-2011-1587 - Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.4, when Internet Explorer 6 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an uploaded file accessed with a dangerous extension such as .html ...
2 years ago

CVE-2021-1587 - A vulnerability in the VXLAN Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software, known as NGOAM, could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This ...
3 years ago

CVE-2001-1587 - NWFTPD.nlm before 5.01w in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via an anonymous STOU command. ...
14 years ago

CVE-2015-1587 - Unrestricted file upload vulnerability in file_to_index.php in Maarch LetterBox 2.8 and earlier and GEC/GED 1.4 and earlier allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a ...
10 years ago

CVE-2014-1587 - Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allow remote attackers to cause a denial of service (memory corruption and ...
8 years ago

CVE-2004-1587 - Buffer overflow in Monolith games including (1) Alien versus Predator 2 1.0.9.6 and earlier, (2) Blood 2 2.1 and earlier, (3) No one lives forever 1.004 and earlier and (4) Shogo 2.2 and earlier allows remote attackers to cause a denial of service ...
7 years ago

CVE-2006-1587 - NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the record file. ...
7 years ago

CVE-2007-1587 - templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the program name in the qshapeLocation parameter. ...
7 years ago

CVE-2003-1587 - Cross-site scripting (XSS) vulnerability in LoganPro allows remote attackers to inject arbitrary web script or HTML via a crafted User-Agent HTTP header. ...
7 years ago

CVE-2013-1587 - The dissect_rohc_ir_packet function in epan/dissectors/packet-rohc.c in the ROHC dissector in Wireshark 1.8.x before 1.8.5 does not properly handle unknown profiles, which allows remote attackers to cause a denial of service (application crash) via a ...
7 years ago

CVE-2009-1587 - index.php in PHP Site Lock 2.0 allows remote attackers to bypass authentication and obtain administrative access by setting the login_id, group_id, login_name, user_id, and user_type cookies to certain values. ...
1 year ago

CVE-2010-1587 - The Jetty ResourceHandler in Apache ActiveMQ 5.x before 5.3.2 and 5.4.x before 5.4.0 allows remote attackers to read JSP source code via a // (slash slash) initial substring in a URI for (1) admin/index.jsp, (2) admin/queues.jsp, or (3) ...
6 years ago

CVE-1999-1587 - /usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option. ...
1 year ago

CVE-2002-1587 - The libthread library (libthread.so.1) for Solaris 2.5.1 through 8 allows local users to cause a denial of service (hang) of an application that uses libthread by causing the application to wait for a certain mutex. ...
6 years ago

CVE-2016-1587 - The Snapweb interface before version 0.21.2 was exposing controls to install or remove snap packages without controlling the identity of the user, nor the origin of the connection. An attacker could have used the controls to remotely add a valid, but ...
5 years ago

CVE-2018-1587 - IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 and IBM Rational Software Architect Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.1 could reveal technical error messages to allow an adversary to gain information ...
5 years ago

CVE-2019-1587 - A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, remote attacker to access sensitive information. The vulnerability occurs because the affected software does not ...
4 years ago

CVE-2020-1587 - An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows ...
3 years ago

CVE-2022-1587 - An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers. ...
1 year ago

CVE-2023-1587 - Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11 ...
1 year ago

CVE-2023-52599 - In the Linux kernel, the following vulnerability has been resolved: ...
11 months ago

Latest Cyber News

Fluent Bit 0-day Vulnerabilities Exposes Billions of Production Environments to Cyber Attacks - 5 minutes ago
UniFi Protect Camera Vulnerability Allows Remote Code Execution Attacks - 1 hour ago
CVE-2025-1594 - 10 hours ago
CVE-2025-1593 - 11 hours ago
CVE-2025-1592 - 11 hours ago
CVE-2025-1591 - 12 hours ago
CVE-2025-1590 - 12 hours ago
CVE-2025-1589 - 13 hours ago
10 Best Ransomware Protection Tools - 2025 - 13 hours ago
10 Best Email Security Gateways in 2025 - 14 hours ago
CVE-2025-1467 - 15 hours ago
CVE-2025-1588 - 15 hours ago
CVE-2025-1587 - 16 hours ago
CVE-2025-1586 - 16 hours ago
CVE-2025-1585 - 17 hours ago
CVE-2025-1584 - 18 hours ago
CVE-2025-1583 - 19 hours ago
CVE-2025-1582 - 19 hours ago
CVE-2025-1581 - 20 hours ago
CVE-2025-1580 - 21 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
Kimsuky - 1 year ago
23andMe - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

Fluent Bit 0-day Vulnerabilities Exposes Billions of Production Environments to Cyber Attacks - 5 minutes ago
UniFi Protect Camera Vulnerability Allows Remote Code Execution Attacks - 1 hour ago
CVE-2025-1575 - 1 day ago
CVE-2025-1576 - 1 day ago
CVE-2024-13728 - 1 day ago
CVE-2025-1577 - 1 day ago
CVE-2025-1578 - 23 hours ago
CVE-2025-1579 - 22 hours ago
CVE-2025-1580 - 21 hours ago
CVE-2025-1581 - 20 hours ago
CVE-2025-1582 - 19 hours ago
CVE-2025-1583 - 19 hours ago
CVE-2025-1584 - 18 hours ago
CVE-2025-1585 - 17 hours ago
CVE-2025-1586 - 16 hours ago
CVE-2025-1587 - 16 hours ago
CVE-2025-1467 - 15 hours ago
CVE-2025-1588 - 15 hours ago
CVE-2025-1589 - 13 hours ago
CVE-2025-1590 - 12 hours ago