|
269171
|
- |
|
gnu
|
tramp
|
The (1) tramp-make-temp-file and (2) tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via…
|
CWE-59
Link Following
|
CVE-2007-5377
|
2011-03-8 12:00 |
2007-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269172
|
- |
|
david_hansson
|
ruby_on_rails
|
Session fixation vulnerability in Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers to hijack web sessions via unspecified vectors related to "URL-based sessions."
|
NVD-CWE-Other
|
CVE-2007-5380
|
2011-03-8 12:00 |
2007-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269173
|
- |
|
hp
|
select_identity
|
Unspecified vulnerability in HP Select Identity 4.01 through 4.01.010 and 4.10 through 4.13.001 allows remote attackers to obtain unspecified access via unknown vectors.
|
CWE-287
Improper Authentication
|
CVE-2007-5391
|
2011-03-8 12:00 |
2007-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269174
|
- |
|
sitebar
|
sitebar
|
Directory traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang paramet…
|
CWE-22
Path Traversal
|
CVE-2007-5491
|
2011-03-8 12:00 |
2007-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269175
|
- |
|
sitebar
|
sitebar
|
Refer to:
http://sitebar.org/downloads.php and
http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markup for patch information.
|
CWE-22
Path Traversal
|
CVE-2007-5491
|
2011-03-8 12:00 |
2007-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269176
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Race condition in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain information for forms from other sites via unknown vectors related to "page transitions" in Safari.
|
CWE-362
Race Condition
|
CVE-2007-4696
|
2011-03-8 11:59 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269177
|
- |
|
claroline
|
claroline
|
Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.8.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) dir parameter in admin/admin…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4717
|
2011-03-8 11:59 |
2007-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269178
|
- |
|
claroline
|
claroline
|
Directory traversal vulnerability in inc/lib/language.lib.php in Claroline before 1.8.6 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language paramet…
|
CWE-22
Path Traversal
|
CVE-2007-4718
|
2011-03-8 11:59 |
2007-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269179
|
- |
|
hitachi
|
ucosminexus_application_server_enterprise
ucosminexus_application_server_standard
ucosminexus_service_platform
|
Multiple buffer overflows in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service or execute arbitrary code v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4758
|
2011-03-8 11:59 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269180
|
- |
|
hitachi
|
ucosminexus_application_server_enterprise
ucosminexus_application_server_standard
ucosminexus_service_platform
|
Multiple unspecified vulnerabilities in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service via unspecified …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4759
|
2011-03-8 11:59 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
