271481
|
- |
|
mkportal
|
mkportal
|
SQL injection vulnerability in MKPortal 1.1.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka ZD-00000008. this information is based upon a vague advisory by a…
|
CWE-89
SQL Injection
|
CVE-2007-3637
|
2008-11-15 14:00 |
2007-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271482
|
- |
|
numedia_soft_inc
|
nmsdvdx_dvd_burning_sdk
|
Multiple unspecified vulnerabilities in NMSDVDXU.DLL in NuMedia NMSDVDX allow remote attackers to cause a denial of service via "improperly initialized" (1) LoadSegmentWord, (2) PartitionType, (3) Se…
|
NVD-CWE-noinfo
|
CVE-2007-3668
|
2008-11-15 14:00 |
2007-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271483
|
- |
|
innovasys
|
dockstudioxp
|
Multiple unspecified vulnerabilities in the Innovasys DockStudioXP InnovaDSXP2.OCX ActiveX Control have unspecified attack vectors and impact, including a denial of service via "improper use" of the …
|
NVD-CWE-noinfo
|
CVE-2007-3669
|
2008-11-15 14:00 |
2007-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271484
|
- |
|
fsp
|
c_library
|
Multiple stack-based buffer overflows in fsplib.c in fsplib before 0.9 might allow remote attackers to execute arbitrary code via (1) a long filename that is not properly handled by the fsp_readdir_n…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-3962
|
2008-11-15 14:00 |
2007-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271485
|
- |
|
opera
|
opera_browser
|
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sens…
|
NVD-CWE-Other
|
CVE-2007-4944
|
2008-11-15 14:00 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271486
|
- |
|
wilson_windowware
|
webbatch
|
webbatch.exe in WebBatch allows remote attackers to obtain sensitive information via the dumpinputdata parameter.
|
CWE-200
Information Exposure
|
CVE-2007-5011
|
2008-11-15 14:00 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271487
|
- |
|
suse
|
suse_linux
|
Untrusted search path vulnerability in yast2-core in SUSE Linux might allow local users to execute arbitrary code by creating a malicious yast2 module in the current working directory.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6167
|
2008-11-15 14:00 |
2007-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271488
|
- |
|
debian
|
unp
|
unp 1.0.12, and other versions before 1.0.14, does not properly escape file names, which might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename a…
|
NVD-CWE-noinfo
|
CVE-2007-6610
|
2008-11-15 14:00 |
2008-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271489
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server 9.1 does not properly handle propagation of an admin server's security policy change log to temporarily unavailable managed servers, which might allow attackers to bypass intended…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4614
|
2008-11-13 15:46 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271490
|
- |
|
vtiger
|
vtiger_crm
|
SQL injection vulnerability in the dashboard (include/utils/SearchUtils.php) in vtiger CRM before 5.0.3 allows remote authenticated users to execute arbitrary SQL commands via the assigned_user_id pa…
|
NVD-CWE-Other
|
CVE-2007-3603
|
2008-11-13 15:42 |
2007-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|