265011
|
- |
|
firefly
|
firefly
|
PHP remote file inclusion vulnerability in modules/admin/include/config.php in FireFly 1.1.01 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT paramete…
|
NVD-CWE-Other
|
CVE-2007-2460
|
2011-03-8 11:54 |
2007-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265012
|
- |
|
novell
|
securelogin
|
Unspecified vulnerability in the ADSCHEMA utility in Novell SecureLogin (NSL) 6 SP1 before 6.0.106 has unknown impact and remote attack vectors, related to granting "users excess permissions to their…
|
NVD-CWE-Other
|
CVE-2007-2475
|
2011-03-8 11:54 |
2007-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265013
|
- |
|
novell
|
securelogin
|
Unspecified vulnerability in Novell SecureLogin (NSL) 6 SP1 before 6.0.106 has unknown impact and remote attack vectors, related to Active Directory (AD) password changes.
|
NVD-CWE-Other
|
CVE-2007-2476
|
2011-03-8 11:54 |
2007-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265014
|
- |
|
vmware
|
server workstation
|
The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x100…
|
NVD-CWE-Other
|
CVE-2007-2491
|
2011-03-8 11:54 |
2007-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265015
|
- |
|
wikkawiki
|
wikkawiki
|
Cross-site scripting (XSS) vulnerability in usersettings.php in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
|
NVD-CWE-Other
|
CVE-2007-2551
|
2011-03-8 11:54 |
2007-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265016
|
- |
|
interchange_development_group
|
interchange
|
Unspecified vulnerability in Interchange before 5.4.2 allows remote attackers to cause an unspecified denial of service (possibly server hang) via crafted HTTP requests.
|
NVD-CWE-Other
|
CVE-2007-2635
|
2011-03-8 11:54 |
2007-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265017
|
- |
|
interchange_development_group
|
interchange
|
The vendor has addressed this issue with the following product update:
Upgrade to Interchange version 5.4.2:
http://ftp.icdevgroup.org/interchange/5.4/
|
NVD-CWE-Other
|
CVE-2007-2635
|
2011-03-8 11:54 |
2007-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265018
|
- |
|
canon
|
network_camera_server_vb100 network_camera_server_vb101 network_camera_server_vb150
|
Cross-site scripting (XSS) vulnerability in the management interface in Canon Network Camera Server VB100 and VB101 with firmware 3.0 R69 and earlier, and VB150 with firmware 1.1 R39 and earlier, all…
|
NVD-CWE-Other
|
CVE-2007-2680
|
2011-03-8 11:54 |
2007-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265019
|
- |
|
bea
|
weblogic_server
|
Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Express and WebLogic Server 6.1 through SP7, 7.0 through SP7, 8.1 through SP5, 9.0 GA, and 9.1 GA allow remote attackers to inject …
|
NVD-CWE-Other
|
CVE-2007-2694
|
2011-03-8 11:54 |
2007-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265020
|
- |
|
group-office
|
group-office_groupware
|
Group-Office before 2.16-13 does not properly validate user IDs, which allows remote attackers to obtain sensitive information via certain requests for (1) message.php and (2) messages.php in modules…
|
NVD-CWE-Other
|
CVE-2007-2720
|
2011-03-8 11:54 |
2007-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|