271201
|
- |
|
php_real_estate_script
|
classifieds
|
Multiple cross-site scripting (XSS) vulnerabilities in the admin panel in PHP Real Estate Classifieds allow remote attackers to inject arbitrary web script or HTML via unspecified "text areas/boxes."
|
CWE-79
Cross-site Scripting
|
CVE-2007-6463
|
2008-11-15 16:04 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271202
|
- |
|
testlink
|
testlink
|
TestLink before 1.7.1 does not enforce an unspecified authorization mechanism, which has unknown impact and attack vectors.
|
CWE-287
Improper Authentication
|
CVE-2007-6006
|
2008-11-15 16:03 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271203
|
- |
|
acdsee
|
photo_editor photo_manager pro_photo_manager
|
Multiple buffer overflows in ACD products allow user-assisted remote attackers to execute arbitrary code via a long section string in a (1) XBM or (2) XPM file to (a) ID_X.apl or (b) IDE_ACDStd.apl. …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6009
|
2008-11-15 16:03 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271204
|
- |
|
pioneers
|
pioneers
|
Unspecified vulnerability in pioneers (formerly gnocatan) 0.11.3 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors that trigger an assert error. NOTE: this …
|
CWE-20
Improper Input Validation
|
CVE-2007-6010
|
2008-11-15 16:03 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271205
|
- |
|
van_dyke_technologies
|
vshell
|
Unspecified vulnerability in VanDyke VShell 3.0.1 allows remote attackers to cause a denial of service via unspecified vectors. NOTE: this information is based upon a vague advisory by a vulnerabili…
|
NVD-CWE-noinfo
|
CVE-2007-6031
|
2008-11-15 16:03 |
2007-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271206
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
Buffer overflow in libsrtp in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and attack vectors. NOTE: it is not clear whether this issue crosses privilege boundaries.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6092
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271207
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
The SRTP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service (kernel crash) via an RTCP index that is "much more than expect…
|
CWE-20
Improper Input Validation
|
CVE-2007-6093
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271208
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
The IPsec module in the VPN component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service (module crash) via an IPsec Phase 2 proposal that…
|
CWE-20
Improper Input Validation
|
CVE-2007-6094
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271209
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might …
|
CWE-200
Information Exposure
|
CVE-2007-6095
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271210
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of "administrators with less privileges," which might allow attackers to read these passwords via unknown v…
|
CWE-255
Credentials Management
|
CVE-2007-6096
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|