258511
|
- |
|
typolight
|
typolight_webcms
|
Unspecified vulnerability in TYPOlight webCMS before 2.2 Build 5 has unknown impact and attack vectors related to a "major security hole."
|
NVD-CWE-noinfo
|
CVE-2007-1632
|
2011-03-8 11:52 |
2007-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258512
|
- |
|
ipswitch
|
imail imail_plus imail_premium ipswitch_collaboration_suite
|
Multiple buffer overflows in the IMAILAPILib ActiveX control (IMailAPI.dll) in Ipswitch IMail Server before 2006.2 allow remote attackers to execute arbitrary code via the (1) WebConnect and (2) Conn…
|
NVD-CWE-Other
|
CVE-2007-1637
|
2011-03-8 11:52 |
2007-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258513
|
- |
|
ipswitch
|
imail imail_plus imail_premium ipswitch_collaboration_suite
|
Upgrade to version 2006.2.
|
NVD-CWE-Other
|
CVE-2007-1637
|
2011-03-8 11:52 |
2007-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258514
|
- |
|
katalog_plyt_audio
|
katalog_plyt_audio
|
Multiple SQL injection vulnerabilities in index.php in Katalog Plyt Audio 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) fraza and (2) litera parameters, differe…
|
NVD-CWE-Other
|
CVE-2007-1656
|
2011-03-8 11:52 |
2007-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258515
|
- |
|
flyspray
|
flyspray
|
Flyspray 0.9.9, when output_buffering is disabled or "set to a low value," allows remote attackers to bypass authentication via a crafted post request.
|
NVD-CWE-Other
|
CVE-2007-1788
|
2011-03-8 11:52 |
2007-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258516
|
- |
|
flyspray
|
flyspray
|
Flyspray 0.9.9 allows remote attackers to obtain sensitive information (private project summaries) via direct requests.
|
NVD-CWE-Other
|
CVE-2007-1789
|
2011-03-8 11:52 |
2007-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258517
|
- |
|
web-app.org
|
webapp
|
Multiple unspecified vulnerabilities in form input validation in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to corrupt data files, gain access to private files, and execute ar…
|
NVD-CWE-Other
|
CVE-2007-1827
|
2011-03-8 11:52 |
2007-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258518
|
- |
|
web-app.org
|
webapp
|
Multiple cross-site scripting (XSS) vulnerabilities in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the QUERY_STRING corresponding…
|
NVD-CWE-Other
|
CVE-2007-1828
|
2011-03-8 11:52 |
2007-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258519
|
- |
|
web-app.org
|
webapp
|
web-app.org WebAPP before 0.9.9.6 allows remote authenticated users to open files and write "wrong data" via a crafted QUERY_STRING.
|
NVD-CWE-Other
|
CVE-2007-1831
|
2011-03-8 11:52 |
2007-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258520
|
- |
|
web-app.org
|
webapp
|
web-app.org WebAPP before 0.9.9.6 allows remote authenticated users to upload certain files (1) via a crafted filename or (2) by "using percent encoding in forms."
|
NVD-CWE-Other
|
CVE-2007-1832
|
2011-03-8 11:52 |
2007-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|