269901
|
- |
|
claroline
|
claroline
|
Cross-site scripting (XSS) vulnerability in admin/adminusers.php in Claroline before 1.8.6 allows remote authenticated administrators to inject arbitrary web script or HTML via the sort parameter. N…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4741
|
2008-09-6 06:29 |
2007-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269902
|
- |
|
avnex
|
av_mp3_player
|
Avnex AV MP3 Player allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed .au file that triggers a divide-by-zero error.
|
NVD-CWE-noinfo
|
CVE-2007-4885
|
2008-09-6 06:29 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269903
|
- |
|
netinvoicing
|
netinvoicing
|
Unspecified vulnerability in netInvoicing before 2.7.3 has unknown impact and attack vectors, related to "security check soap".
|
NVD-CWE-noinfo
|
CVE-2007-4910
|
2008-09-6 06:29 |
2007-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269904
|
- |
|
invision_power_services
|
invision_power_board
|
ips_kernel/class_upload.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote attackers to upload arbitrary script files with crafted image filenames to uploads/, where the…
|
CWE-94
Code Injection
|
CVE-2007-4913
|
2008-09-6 06:29 |
2007-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269905
|
- |
|
office_efficiencies
|
safesquid
|
Unspecified vulnerability in Office Efficiencies SafeSquid 4.1.x has unknown impact and attack vectors, related to a "serious security flaw," possibly specific to Linux.
|
NVD-CWE-noinfo
|
CVE-2007-4936
|
2008-09-6 06:29 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269906
|
- |
|
emc
|
vmware_server
|
EMC VMware Server before 1.0.4 Build 56528 writes passwords in cleartext to unspecified log files, which allows local users to obtain sensitive information by reading these files, a different vulnera…
|
CWE-310
Cryptographic Issues
|
CVE-2007-5024
|
2008-09-6 06:29 |
2007-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269907
|
- |
|
vmware
|
ace
|
Unspecified vulnerability in EMC VMware ACE before 1.0.3 Build 54075 allows attackers to have an unknown impact via an unspecified manipulation of "images stored in virtual machines downloaded by the…
|
NVD-CWE-noinfo
|
CVE-2007-5025
|
2008-09-6 06:29 |
2007-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269908
|
- |
|
dibbler
|
dibbler
|
Dibbler 0.6.0 on Linux uses weak world-writable permissions for unspecified files in /var/lib/dibbler, which has unknown impact and local attack vectors.
|
CWE-200
Information Exposure
|
CVE-2007-5028
|
2008-09-6 06:29 |
2007-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269909
|
- |
|
egroupware
|
egroupware
|
Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.4.001 allow remote attackers to inject arbitrary web script or HTML via the cat_data[color] parameter to (1) preferences/inc/class.…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5091
|
2008-09-6 06:29 |
2007-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269910
|
- |
|
id3lib
|
id3lib
|
The RenderV2ToFile function in tag_file.cpp in id3lib (aka libid3) 3.8.3 allows local users to overwrite arbitrary files via a symlink attack on a temporary file whose name is constructed from the na…
|
NVD-CWE-Other
|
CVE-2007-4460
|
2008-09-6 06:28 |
2007-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|