265111
|
- |
|
web-app.org
|
webapp
|
WebAPP before 0.9.9.5 allows remote authenticated users, without admin privileges, to obtain sensitive information via (1) the Forum Archive feature and (2) Recent Searches.
|
NVD-CWE-Other
|
CVE-2007-1187
|
2011-03-8 11:51 |
2007-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265112
|
- |
|
web-app.org
|
webapp
|
WebAPP before 0.9.9.5 allows remote attackers to submit Search form input that is not checked for (1) composition or (2) length, which has unknown impact, possibly related to "search form hijacking".
|
NVD-CWE-Other
|
CVE-2007-1188
|
2011-03-8 11:51 |
2007-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265113
|
- |
|
orangehrm
|
orangehrm
|
Multiple unspecified vulnerabilities in the Login page in OrangeHRM before 20070212 have unknown impact and attack vectors.
|
NVD-CWE-Other
|
CVE-2007-1193
|
2011-03-8 11:51 |
2007-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265114
|
- |
|
orangehrm
|
orangehrm
|
Successful exploitation requires that "magic_quotes_gpc" is disabled.
|
NVD-CWE-Other
|
CVE-2007-1193
|
2011-03-8 11:51 |
2007-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265115
|
- |
|
wordpress
|
wordpress
|
Multiple cross-site scripting (XSS) vulnerabilities in wp-includes/functions.php in WordPress before 2.1.2-alpha allow remote attackers to inject arbitrary web script or HTML via (1) the Referer HTTP…
|
NVD-CWE-Other
|
CVE-2007-1230
|
2011-03-8 11:51 |
2007-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265116
|
- |
|
php
|
php
|
A regression error in the phpinfo function in PHP 4.4.3 to 4.4.6, and PHP 6.0 in CVS, allows remote attackers to conduct cross-site scripting (XSS) attacks via GET, POST, or COOKIE array values, whic…
|
NVD-CWE-Other
|
CVE-2007-1287
|
2011-03-8 11:51 |
2007-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265117
|
- |
|
intel lenovo
|
pro_1000_lan_adapter thinkpad
|
Unspecified vulnerability in Lenovo Intel PRO/1000 LAN adapter before Build 135400, as used on IBM Lenovo ThinkPad systems, has unknown impact and attack vectors.
|
NVD-CWE-Other
|
CVE-2007-1307
|
2011-03-8 11:51 |
2007-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265118
|
- |
|
novell
|
access_manager
|
Novell Access Management 3 SSLVPN Server allows remote authenticated users to bypass VPN restrictions by making policy.txt read-only, disconnecting, then manually modifying policy.txt.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-1309
|
2011-03-8 11:51 |
2007-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265119
|
- |
|
phpmyadmin
|
phpmyadmin
|
The PMA_ArrayWalkRecursive function in libraries/common.lib.php in phpMyAdmin before 2.10.0.2 does not limit recursion on arrays provided by users, which allows context-dependent attackers to cause a…
|
NVD-CWE-Other
|
CVE-2007-1325
|
2011-03-8 11:51 |
2007-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265120
|
- |
|
phpmyadmin
|
phpmyadmin
|
This vulnerability is addressed in the following product update:
http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2007-3
|
NVD-CWE-Other
|
CVE-2007-1325
|
2011-03-8 11:51 |
2007-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|