|
269551
|
- |
|
xensource_inc
|
xen
|
Xen 3.1.1 allows virtual guest system users to cause a denial of service (hypervisor crash) by using a debug register (DR7) to set certain breakpoints.
|
NVD-CWE-Other
|
CVE-2007-5906
|
2008-09-6 06:31 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269552
|
- |
|
solidweb
|
novus
|
Cross-site scripting (XSS) vulnerability in buscar.asp in Solidweb Novus 1.0 allows remote attackers to inject arbitrary web script or HTML via the p parameter. NOTE: the provenance of this informat…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5142
|
2008-09-6 06:30 |
2007-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269553
|
- |
|
puzzle_apps_cms
|
puzzle_apps_cms
|
Multiple PHP remote file inclusion vulnerabilities in Puzzle Apps CMS 2.2.1 allow remote attackers to execute arbitrary PHP code via a URL in the MODULEDIR parameter to (1) core/modules/my/my.module.…
|
CWE-94
Code Injection
|
CVE-2007-5147
|
2008-09-6 06:30 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269554
|
- |
|
ntfs-3g
|
ntfs-3g
|
The ntfs-3g package before 1.913-2.fc7 in Fedora 7, and an ntfs-3g package in Ubuntu 7.10/Gutsy, assign incorrect permissions (setuid root) to mount.ntfs-3g, which allows local users with fuse group …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5159
|
2008-09-6 06:30 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269555
|
- |
|
restaurant_management_system
|
restaurant_management_system
|
Multiple PHP remote file inclusion vulnerabilities in Thierry Leriche Restaurant Management System (ReMaSys) 0.5 allow remote attackers to execute arbitrary PHP code via a URL in (1) the DIR_ROOT par…
|
CWE-94
Code Injection
|
CVE-2007-5160
|
2008-09-6 06:30 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269556
|
- |
|
phplister
|
phplister
|
PHP remote file inclusion vulnerability in .systeme/fonctions.php in phpLister 0.5-pre2 allows remote attackers to execute arbitrary PHP code via a URL in the nom_rep_systeme parameter.
|
CWE-94
Code Injection
|
CVE-2007-5167
|
2008-09-6 06:30 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269557
|
- |
|
y\&k_iletisim_formu
|
y\&k_iletisim_formu
|
Multiple cross-site scripting (XSS) vulnerabilities in iletisim.asp in Y&K Iletisim Formu allow remote attackers to inject arbitrary web script or HTML via the (1) ad, (2) sehir, (3) yas, (4) cins, (…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5179
|
2008-09-6 06:30 |
2007-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269558
|
- |
|
dircproxy
|
dircproxy
|
irc_server.c in dircproxy 1.2.0 and earlier allows remote attackers to cause a denial of service (segmentation fault) via an ACTION command without a parameter, which triggers a NULL pointer derefere…
|
CWE-20
Improper Input Validation
|
CVE-2007-5226
|
2008-09-6 06:30 |
2007-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269559
|
- |
|
activepdf
|
server
|
Heap-based buffer overflow in the activePDF Server service (aka APServer.exe) in activePDF Server 3.8.4 and 3.8.5.14, and possibly other versions before 3.8.6.16, allows remote attackers to execute a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5397
|
2008-09-6 06:30 |
2008-02-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269560
|
- |
|
claroline
|
claroline
|
Cross-site scripting (XSS) vulnerability in admin/adminusers.php in Claroline before 1.8.6 allows remote authenticated administrators to inject arbitrary web script or HTML via the sort parameter. N…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4741
|
2008-09-6 06:29 |
2007-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
