|
267071
|
- |
|
docman
|
docman
|
Cross-site scripting (XSS) vulnerability in DocMan 1.3 RC2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-0379
|
2008-11-13 15:31 |
2007-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267072
|
- |
|
docman
|
docman
|
DocMan 1.3 RC2 allows remote attackers to obtain sensitive information (the full path) via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-0380
|
2008-11-13 15:31 |
2007-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267073
|
- |
|
adaptive_technology_resource_centre
|
atutor
|
Multiple SQL injection vulnerabilities in ATutor 1.5.3.2 allow remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: CVE analysis suggests that the vendor fixed these …
|
NVD-CWE-Other
|
CVE-2007-0381
|
2008-11-13 15:31 |
2007-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267074
|
- |
|
postnuke_software_foundation
|
postnuke
|
Cross-site scripting (XSS) vulnerability in preview in the reviews section in PostNuke 0.764 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-0384
|
2008-11-13 15:31 |
2007-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267075
|
- |
|
postnuke_software_foundation
|
postnuke
|
The faq section in PostNuke 0.764 allows remote attackers to obtain sensitive information (the full path) via "unvalidated output" in FAQ/index.php, possibly involving an undefined id_cat variable.
|
NVD-CWE-Other
|
CVE-2007-0385
|
2008-11-13 15:31 |
2007-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267076
|
- |
|
postnuke_software_foundation
|
postnuke
|
Unspecified vulnerability in the rating section in PostNuke 0.764 has unknown impact and attack vectors, related to "an interesting bug."
|
NVD-CWE-Other
|
CVE-2007-0386
|
2008-11-13 15:31 |
2007-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267077
|
- |
|
bea
|
aqualogic_service_bus
|
BEA AquaLogic Service Bus 2.0, 2.1, and 2.5 does not properly reject malformed request messages to a proxy service, which might allow remote attackers to bypass authorization policies and route reque…
|
NVD-CWE-Other
|
CVE-2007-0432
|
2008-11-13 15:31 |
2007-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267078
|
- |
|
bea
|
aqualogic_service_bus
|
Unspecified vulnerability in BEA AquaLogic Enterprise Security 2.0 through 2.0 SP2, 2.1 through 2.1 SP1, and 2.2, when using Active Directory LDAP for authentication, allows remote authenticated user…
|
NVD-CWE-Other
|
CVE-2007-0433
|
2008-11-13 15:31 |
2007-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267079
|
- |
|
bea
|
aqualogic_enterprise_security
|
BEA AquaLogic Enterprise Security 2.0 through 2.0 SP2, 2.1 through 2.1 SP1, and 2.2 does not properly set the severity level of audit events when the system load is high, which might make it easier f…
|
NVD-CWE-Other
|
CVE-2007-0434
|
2008-11-13 15:31 |
2007-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267080
|
- |
|
magnatune.com
|
album_browser
|
The magnatune.com album browser in Amarok allows attackers to cause a denial of service (application crash) via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2006-6980
|
2008-11-13 15:29 |
2007-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
