271341
|
- |
|
guanxicrm
|
guanxicrm_business_solution
|
PHP remote file inclusion vulnerability in modules/webmail2/inc/rfc822.php in guanxiCRM Business Solution 0.9.1 allows remote attackers to execute arbitrary PHP code via a URL in the webmail2_inc_dir…
|
CWE-94
Code Injection
|
CVE-2007-5096
|
2008-11-15 15:59 |
2007-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271342
|
- |
|
symantec
|
veritas_backup_exec
|
Unspecified vulnerability in the client in Symantec Veritas Backup Exec for Windows Servers 11d has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by…
|
NVD-CWE-noinfo
|
CVE-2007-5126
|
2008-11-15 15:59 |
2007-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271343
|
- |
|
microsoft
|
windows_live_messenger
|
Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to cause a denial of service (application crash or system crash) a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5144
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271344
|
- |
|
der_dirigent
|
der_dirigent
|
Multiple PHP remote file inclusion vulnerabilities in dedi-group Der Dirigent 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the dedi_path parameter to (1) inc.generate_code.ph…
|
CWE-94
Code Injection
|
CVE-2007-5146
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271345
|
- |
|
sitesys
|
sitesys
|
Multiple PHP remote file inclusion vulnerabilities in SiteSys 1.0a allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) inc/pagehead.inc.php or (2) inc/page…
|
CWE-94
Code Injection
|
CVE-2007-5166
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271346
|
- |
|
clanlite
|
clanlite
|
Multiple PHP remote file inclusion vulnerabilities in ClanLite 1.23.01.2005 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules/serveur_jeux.php o…
|
CWE-20
Improper Input Validation
|
CVE-2007-5168
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271347
|
- |
|
matteo
|
barbo91
|
Unrestricted file upload vulnerability in upload.php in Barbo91 1.1 allows remote attackers to upload and execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is …
|
CWE-20
Improper Input Validation
|
CVE-2007-4761
|
2008-11-15 15:58 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271348
|
- |
|
domino_blogsphere
|
domino_blogsphere
|
Cross-site scripting (XSS) vulnerability in Domino Blogsphere 3.01 Beta 7 allows remote attackers to inject arbitrary web script or HTML via the name field. NOTE: the provenance of this information …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4813
|
2008-11-15 15:58 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271349
|
- |
|
google
|
picasa
|
Multiple cross-application scripting (XAS) vulnerabilities in Google Picasa have unspecified attack vectors and impact. NOTE: this information is based upon a vague pre-advisory.
|
NVD-CWE-Other
|
CVE-2007-4824
|
2008-11-15 15:58 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271350
|
- |
|
google
|
picasa
|
Google Picasa allows remote attackers to read image files stored by Picasa via unspecified vectors involving a picasa:// URI. NOTE: this information is based upon a vague pre-advisory.
|
NVD-CWE-Other
|
CVE-2007-4847
|
2008-11-15 15:58 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|