|
269531
|
- |
|
aleris
|
web_publishing_server
|
SQL injection vulnerability in calendar/page.asp in Aleris Web Publishing Server 3.0 allows remote attackers to execute arbitrary SQL commands via the mode parameter.
|
CWE-89
SQL Injection
|
CVE-2007-6032
|
2008-09-6 06:32 |
2007-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269532
|
- |
|
swsoft
|
confixx_professional
|
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the …
|
CWE-94
Code Injection
|
CVE-2007-6042
|
2008-09-6 06:32 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269533
|
- |
|
nuked-klan
|
nuked-klan
|
Cross-site scripting (XSS) vulnerability in index.php in Nuked-Klan 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter. NOTE: the provenance of this informat…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6090
|
2008-09-6 06:32 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269534
|
- |
|
ingate
|
ingate_firewall
ingate_siparator
|
Unspecified vulnerability in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 might leave "media pinholes" open upon a restart of the SIP module, which might make it easier for remote attacker…
|
NVD-CWE-Other
|
CVE-2007-6099
|
2008-09-6 06:32 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269535
|
- |
|
zabbix
|
zabbix_agentd
|
zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges.
|
NVD-CWE-noinfo
CWE-16
Configuration
|
CVE-2007-6210
|
2008-09-6 06:32 |
2007-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269536
|
- |
|
beehive_forum
|
beehive_forum
|
Multiple unspecified vulnerabilities in Beehive Forum 0.7.1 have unknown "critical" impact and attack vectors, different issues than CVE-2007-6014.
|
NVD-CWE-noinfo
|
CVE-2007-6241
|
2008-09-6 06:32 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269537
|
- |
|
cisco
|
ios
|
Unspecified vulnerability in Cisco IOS allows remote attackers to obtain the IOS version via unspecified vectors involving a "common network service", aka PSIRT-1255024833. NOTE: as of 20071016, the…
|
CWE-200
Information Exposure
|
CVE-2007-5550
|
2008-09-6 06:31 |
2007-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269538
|
- |
|
cisco
|
ios
|
Off-by-one error in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. NOTE: as of 20071016, the only disclosure is a vagu…
|
NVD-CWE-Other
|
CVE-2007-5551
|
2008-09-6 06:31 |
2007-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269539
|
- |
|
cisco
|
ios
|
Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable informat…
|
CWE-189
Numeric Errors
|
CVE-2007-5552
|
2008-09-6 06:31 |
2007-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269540
|
- |
|
oracle
|
database_server
|
Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle reference number 7892711. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no ac…
|
CWE-200
Information Exposure
|
CVE-2007-5554
|
2008-09-6 06:31 |
2007-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
