271231
|
- |
|
rnote
|
rnote
|
Multiple cross-site scripting (XSS) vulnerabilities in rnote.php in rNote 0.9.7.5 allow remote attackers to inject arbitrary web script or HTML via the (1) d or the (2) u parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5648
|
2008-11-15 16:01 |
2007-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271232
|
- |
|
multixtpm
|
application_server
|
Stack-based buffer overflow in the DebugPrint function in MultiXTpm Application Server before 4.0.2d allows remote attackers to execute arbitrary code via a long string argument.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5675
|
2008-11-15 16:01 |
2007-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271233
|
- |
|
denyhosts
|
denyhosts
|
DenyHosts 2.6 processes OpenSSH sshd "not listed in AllowUsers" log messages with an incorrect regular expression that does not match an IP address, which might allow remote attackers to avoid detect…
|
CWE-16
Configuration
|
CVE-2007-5715
|
2008-11-15 16:01 |
2007-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271234
|
- |
|
twiki
|
twiki
|
The default configuration for twiki 4.1.2 on Debian GNU/Linux, and possibly other operating systems, specifies the work area directory (cfg{RCS}{WorkAreaDir}) under the web document root, which might…
|
NVD-CWE-Other
|
CVE-2007-5193
|
2008-11-15 16:00 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271235
|
- |
|
suse
|
suse_linux
|
Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linux Enterprise Desktop 10 allows remote attackers to obtain credentials…
|
CWE-310 CWE-200
Cryptographic Issues Information Exposure
|
CVE-2007-5195
|
2008-11-15 16:00 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271236
|
- |
|
suse
|
suse_linux
|
The novell-groupwise-client package is only contained in SUSE Linux Enterprise Desktop 10 and was updated there.
|
CWE-310 CWE-200
Cryptographic Issues Information Exposure
|
CVE-2007-5195
|
2008-11-15 16:00 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271237
|
- |
|
suse
|
suse_linux
|
Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linux Enterprise Desktop 10 allows remote attackers to obtain credentials…
|
CWE-310 CWE-200
Cryptographic Issues Information Exposure
|
CVE-2007-5196
|
2008-11-15 16:00 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271238
|
- |
|
jacob_hinkle
|
godsend
|
Multiple PHP remote file inclusion vulnerabilities in Jacob Hinkle GodSend 0.6 allow remote attackers to execute arbitrary PHP code via a URL in the SCRIPT_DIR parameter to (1) gtk/main.inc.php or (2…
|
CWE-94
Code Injection
|
CVE-2007-5215
|
2008-11-15 16:00 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271239
|
- |
|
e-ark
|
e-ark
|
Multiple PHP remote file inclusion vulnerabilities in eArk (e-Ark) 1.0 allow remote attackers to execute arbitrary PHP code via a URL in (1) the cfg_vcard_path parameter to src/vcard_inc.php or (2) t…
|
CWE-94
Code Injection
|
CVE-2007-5216
|
2008-11-15 16:00 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271240
|
- |
|
uebimiau
|
uebimiau
|
Cross-site scripting (XSS) vulnerability in index.php in Uebimiau 2.7.2 through 2.7.10 allows remote attackers to inject arbitrary web script or HTML via the f_email parameter. NOTE: the provenance …
|
CWE-79
Cross-site Scripting
|
CVE-2007-5235
|
2008-11-15 16:00 |
2007-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|