RSS   Vulnerabilities for 'Perldesk'   RSS

2005-05-02
 
CVE-2005-0343

 

 
SQL injection vulnerability in PerlDesk 1.x allows remote attackers to inject arbitrary SQL commands via the view parameter.

 
2004-09-13
 
CVE-2004-1678

 

 
Directory traversal vulnerability in pdesk.cgi in PerlDesk allows remote attackers to read portions of arbitrary files and possibly execute arbitrary Perl modules via ".." sequences terminated by a %00 (null) character in the lang parameter, which can leak portions of the requested files if a compilation error message occurs.

 
2004-09-12
 
CVE-2004-1677

 

 
pdesk.cgi in PerlDesk allows remote attackers to gain sensitive information via an invalid lang parameter, which includes pathname information in an error message.

 


Copyright 2024, cxsecurity.com

 

Back to Top