|
268211
|
- |
|
webmedia_explorer
|
webmedia_explorer
|
Multiple PHP remote file inclusion vulnerabilities in Webmedia Explorer (webmex) 3.2.2 allow remote attackers to execute arbitrary PHP code via (1) a URL in the path_include parameter to includes/rss…
|
CWE-94
Code Injection
|
CVE-2007-4948
|
2008-11-15 15:59 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268212
|
- |
|
linux
|
linux_kernel
|
cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing mul…
|
CWE-59
Link Following
|
CVE-2007-4998
|
2008-11-15 15:59 |
2008-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268213
|
- |
|
derek_leung
|
pslash
|
Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in (1) the lvc_admin_dir parameter to modules/visitors2/admin/view-arc…
|
CWE-94
Code Injection
|
CVE-2007-5014
|
2008-11-15 15:59 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268214
|
- |
|
apache
|
geronimo
|
Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows remote attackers to bypass authentication and obtain "access to Geronimo internals" via unspecified vecto…
|
CWE-287
Improper Authentication
|
CVE-2007-5085
|
2008-11-15 15:59 |
2007-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268215
|
- |
|
guanxicrm
|
guanxicrm_business_solution
|
PHP remote file inclusion vulnerability in modules/webmail2/inc/rfc822.php in guanxiCRM Business Solution 0.9.1 allows remote attackers to execute arbitrary PHP code via a URL in the webmail2_inc_dir…
|
CWE-94
Code Injection
|
CVE-2007-5096
|
2008-11-15 15:59 |
2007-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268216
|
- |
|
symantec
|
veritas_backup_exec
|
Unspecified vulnerability in the client in Symantec Veritas Backup Exec for Windows Servers 11d has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by…
|
NVD-CWE-noinfo
|
CVE-2007-5126
|
2008-11-15 15:59 |
2007-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268217
|
- |
|
microsoft
|
windows_live_messenger
|
Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to cause a denial of service (application crash or system crash) a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5144
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268218
|
- |
|
der_dirigent
|
der_dirigent
|
Multiple PHP remote file inclusion vulnerabilities in dedi-group Der Dirigent 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the dedi_path parameter to (1) inc.generate_code.ph…
|
CWE-94
Code Injection
|
CVE-2007-5146
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268219
|
- |
|
sitesys
|
sitesys
|
Multiple PHP remote file inclusion vulnerabilities in SiteSys 1.0a allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) inc/pagehead.inc.php or (2) inc/page…
|
CWE-94
Code Injection
|
CVE-2007-5166
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268220
|
- |
|
clanlite
|
clanlite
|
Multiple PHP remote file inclusion vulnerabilities in ClanLite 1.23.01.2005 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules/serveur_jeux.php o…
|
CWE-20
Improper Input Validation
|
CVE-2007-5168
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
