|
277841
|
- |
|
phprpg
|
phprpg
|
SQL injection vulnerability in index.php in phpRPG 0.8 allows remote attackers to execute arbitrary SQL commands via the password parameter. NOTE: the provenance of this information is unknown; the …
|
CWE-89
SQL Injection
|
CVE-2007-6484
|
2008-09-6 06:33 |
2007-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277842
|
- |
|
xoops
|
xoops
|
The b_system_comments_show function in htdocs/modules/system/blocks/system_blocks.php in XOOPS before 2.0.18 does not check permissions, which allows remote attackers to read the comments in restrict…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6675
|
2008-09-6 06:33 |
2008-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277843
|
- |
|
autonomy
|
keyview_export_sdk
keyview_filter_sdk
keyview_viewer_sdk
|
Heap-based buffer overflow in emlsr.dll before 2.0.0.4 in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK allows remote attackers to execute arbitrary code via a long Content-Type h…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6008
|
2008-09-6 06:32 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277844
|
- |
|
bug_software
|
bughotel_reservation_system
|
Unspecified vulnerability in main.php of BugHotel Reservation System before 4.9.9 P3 allows remote attackers to bypass authentication and gain administrative access via unspecified vectors. NOTE: th…
|
CWE-287
Improper Authentication
|
CVE-2007-6011
|
2008-09-6 06:32 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277845
|
- |
|
wpa_supplicant
|
wpa_supplicant
|
Stack-based buffer overflow in driver_wext.c in wpa_supplicant 0.6.0 and earlier allows remote attackers to cause a denial of service (crash) via crafted TSF data.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6025
|
2008-09-6 06:32 |
2007-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277846
|
- |
|
clam_anti-virus
|
clamav
|
Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote attackers to execute arbitrary code via a crafted e-mail message. NOTE: this information is based upon a vague advisory by a vulner…
|
CWE-94
Code Injection
|
CVE-2007-6029
|
2008-09-6 06:32 |
2007-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277847
|
- |
|
weird_solutions
|
bootpturbo
|
Unspecified vulnerability in Weird Solutions BOOTPTurbo 1.2 has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by a vulnerability information sales o…
|
NVD-CWE-noinfo
|
CVE-2007-6030
|
2008-09-6 06:32 |
2007-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277848
|
- |
|
aleris
|
web_publishing_server
|
SQL injection vulnerability in calendar/page.asp in Aleris Web Publishing Server 3.0 allows remote attackers to execute arbitrary SQL commands via the mode parameter.
|
CWE-89
SQL Injection
|
CVE-2007-6032
|
2008-09-6 06:32 |
2007-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277849
|
- |
|
swsoft
|
confixx_professional
|
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the …
|
CWE-94
Code Injection
|
CVE-2007-6042
|
2008-09-6 06:32 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277850
|
- |
|
nuked-klan
|
nuked-klan
|
Cross-site scripting (XSS) vulnerability in index.php in Nuked-Klan 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter. NOTE: the provenance of this informat…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6090
|
2008-09-6 06:32 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
