|
268201
|
- |
|
suse
|
suse_linux
|
The novell-groupwise-client package is only contained in SUSE Linux Enterprise Desktop 10 and was updated there.
|
CWE-310
CWE-200
Cryptographic Issues
Information Exposure
|
CVE-2007-5195
|
2008-11-15 16:00 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268202
|
- |
|
suse
|
suse_linux
|
Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linux Enterprise Desktop 10 allows remote attackers to obtain credentials…
|
CWE-310
CWE-200
Cryptographic Issues
Information Exposure
|
CVE-2007-5196
|
2008-11-15 16:00 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268203
|
- |
|
jacob_hinkle
|
godsend
|
Multiple PHP remote file inclusion vulnerabilities in Jacob Hinkle GodSend 0.6 allow remote attackers to execute arbitrary PHP code via a URL in the SCRIPT_DIR parameter to (1) gtk/main.inc.php or (2…
|
CWE-94
Code Injection
|
CVE-2007-5215
|
2008-11-15 16:00 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268204
|
- |
|
e-ark
|
e-ark
|
Multiple PHP remote file inclusion vulnerabilities in eArk (e-Ark) 1.0 allow remote attackers to execute arbitrary PHP code via a URL in (1) the cfg_vcard_path parameter to src/vcard_inc.php or (2) t…
|
CWE-94
Code Injection
|
CVE-2007-5216
|
2008-11-15 16:00 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268205
|
- |
|
uebimiau
|
uebimiau
|
Cross-site scripting (XSS) vulnerability in index.php in Uebimiau 2.7.2 through 2.7.10 allows remote attackers to inject arbitrary web script or HTML via the f_email parameter. NOTE: the provenance …
|
CWE-79
Cross-site Scripting
|
CVE-2007-5235
|
2008-11-15 16:00 |
2007-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268206
|
- |
|
virusblokada
|
vba32_antivirus
|
VirusBlokAda Vba32 AntiVirus 3.12.2 uses weak permissions (Everyone:Write) for its installation directory, which allows local users to gain privileges by replacing application programs, as demonstrat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5254
|
2008-11-15 16:00 |
2007-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268207
|
- |
|
ilient
|
sysaid
|
Cross-site request forgery (CSRF) vulnerability in Ilient SysAid 4.5.03 and 4.5.04 allows remote attackers to perform some actions as administrators, as demonstrated by changing the administrator pas…
|
CWE-352
Origin Validation Error
|
CVE-2007-5259
|
2008-11-15 16:00 |
2007-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268208
|
- |
|
appfuse
|
appfuse
|
Multiple cross-site scripting (XSS) vulnerabilities in messages.jsp in AppFuse before 2.0 Final allow remote attackers to inject arbitrary web script or HTML via unspecified input that is recorded in…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5280
|
2008-11-15 16:00 |
2007-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268209
|
- |
|
sun
|
java_virtual_machine
|
Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote attackers to conduct a multi-pin DNS rebinding attack and execute arbitrary JavaScript in an intranet context…
|
CWE-16
CWE-20
Configuration
Improper Input Validation
|
CVE-2007-5375
|
2008-11-15 16:00 |
2007-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268210
|
- |
|
myphppagetool
|
myphppagetool
|
Multiple PHP remote file inclusion vulnerabilities in myphpPagetool 0.4.3 allow remote attackers to execute arbitrary PHP code via a URL in the ptinclude parameter to (1) help1.php, (2) help2.php, (3…
|
CWE-94
Code Injection
|
CVE-2007-4947
|
2008-11-15 15:59 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
