|
266881
|
- |
|
microsoft
|
windows_live_messenger
|
Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to cause a denial of service (application crash or system crash) a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5144
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266882
|
- |
|
der_dirigent
|
der_dirigent
|
Multiple PHP remote file inclusion vulnerabilities in dedi-group Der Dirigent 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the dedi_path parameter to (1) inc.generate_code.ph…
|
CWE-94
Code Injection
|
CVE-2007-5146
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266883
|
- |
|
sitesys
|
sitesys
|
Multiple PHP remote file inclusion vulnerabilities in SiteSys 1.0a allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) inc/pagehead.inc.php or (2) inc/page…
|
CWE-94
Code Injection
|
CVE-2007-5166
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266884
|
- |
|
clanlite
|
clanlite
|
Multiple PHP remote file inclusion vulnerabilities in ClanLite 1.23.01.2005 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules/serveur_jeux.php o…
|
CWE-20
Improper Input Validation
|
CVE-2007-5168
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266885
|
- |
|
matteo
|
barbo91
|
Unrestricted file upload vulnerability in upload.php in Barbo91 1.1 allows remote attackers to upload and execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is …
|
CWE-20
Improper Input Validation
|
CVE-2007-4761
|
2008-11-15 15:58 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266886
|
- |
|
domino_blogsphere
|
domino_blogsphere
|
Cross-site scripting (XSS) vulnerability in Domino Blogsphere 3.01 Beta 7 allows remote attackers to inject arbitrary web script or HTML via the name field. NOTE: the provenance of this information …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4813
|
2008-11-15 15:58 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266887
|
- |
|
google
|
picasa
|
Multiple cross-application scripting (XAS) vulnerabilities in Google Picasa have unspecified attack vectors and impact. NOTE: this information is based upon a vague pre-advisory.
|
NVD-CWE-Other
|
CVE-2007-4824
|
2008-11-15 15:58 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266888
|
- |
|
google
|
picasa
|
Google Picasa allows remote attackers to read image files stored by Picasa via unspecified vectors involving a picasa:// URI. NOTE: this information is based upon a vague pre-advisory.
|
NVD-CWE-Other
|
CVE-2007-4847
|
2008-11-15 15:58 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266889
|
- |
|
techexcel_inc.
|
customerwise
|
Multiple cross-site scripting (XSS) vulnerabilities in TechExcel CustomerWise (formerly TechExcel CRM) allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-4882
|
2008-11-15 15:58 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266890
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in the BotQuery extension in MediaWiki 1.7.x and earlier before SVN 20070910 allows remote attackers to inject arbitrary web script or HTML via unspecified ve…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4883
|
2008-11-15 15:58 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
