|
266961
|
- |
|
google
|
desktop
|
Google Desktop allows user-assisted remote attackers to execute arbitrary programs via a man-in-the-middle attack that injects JavaScript, a www.google.com search IFRAME, and a META HTTP-EQUIV="refre…
|
NVD-CWE-Other
|
CVE-2007-3150
|
2008-11-15 15:51 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266962
|
- |
|
jelsoft
|
vbsupport_integrated_ticket_system
|
SQL injection vulnerability in vBSupport.php in vBSupport 1.1 before 1.1a allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-3197
|
2008-11-15 15:51 |
2007-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266963
|
- |
|
galix
|
galix
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in GaliX 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) galix_cat_detail, (2) galix_gal_detail, and (3)…
|
NVD-CWE-Other
|
CVE-2007-2806
|
2008-11-15 15:50 |
2007-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266964
|
- |
|
apple
|
safari
|
Cross-domain vulnerability in Apple Safari 2.0.4 allows remote attackers to access restricted information from other domains via Javascript, as demonstrated by a js script that accesses the location …
|
NVD-CWE-Other
|
CVE-2007-2843
|
2008-11-15 15:50 |
2007-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266965
|
- |
|
microsoft
|
visual_database_tools_database_designer
|
The NotSafe function in the MSVDTDatabaseDesigner7 ActiveX control in VDT70.DLL in Microsoft Visual Database Tools (MSVDT) Database Designer 7.0 allows remote attackers to cause a denial of service (…
|
NVD-CWE-Other
|
CVE-2007-2885
|
2008-11-15 15:50 |
2007-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266966
|
- |
|
sun
|
java_system_messaging_server
|
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.0 through 6.3, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspec…
|
NVD-CWE-Other
|
CVE-2007-2904
|
2008-11-15 15:50 |
2007-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266967
|
- |
|
jelsoft
|
vbulletin
|
Unspecified vulnerability in Jelsoft vBulletin before 3.6.6, when unauthenticated User Infraction Permissions is disabled, allows remote attackers to see the infraction "red flag" for a deleted user.
|
NVD-CWE-Other
|
CVE-2007-2912
|
2008-11-15 15:50 |
2007-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266968
|
- |
|
mambo
|
mambo
|
MOStlyDB Admin in Mambo 4.6.1 does not properly check privileges, which allows remote authenticated administrators to have an unknown impact via unspecified vectors. NOTE: the provenance of this inf…
|
NVD-CWE-Other
|
CVE-2007-2557
|
2008-11-15 15:49 |
2007-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266969
|
- |
|
parallels
|
parallels_desktop
|
Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in t…
|
NVD-CWE-Other
|
CVE-2007-2454
|
2008-11-15 15:48 |
2007-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266970
|
- |
|
parallels
|
parallels_desktop
|
Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at …
|
NVD-CWE-Other
|
CVE-2007-2455
|
2008-11-15 15:48 |
2007-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
