|
260771
|
- |
|
picoflat_cms
|
picoflat_cms
|
PHP remote file inclusion vulnerability in index.php in PicoFlat CMS 0.4.14 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pagina parameter.
|
CWE-94
Code Injection
|
CVE-2007-5390
|
2017-09-29 10:29 |
2007-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260772
|
- |
|
xpdf
|
xpdf
|
Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5392
|
2017-09-29 10:29 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260773
|
- |
|
xpdf
|
xpdf
|
Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5393
|
2017-09-29 10:29 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260774
|
- |
|
joomlaequipment
|
jcontentsubscription
|
Multiple PHP remote file inclusion vulnerabilities in the JContentSubscription (com_jcs) 1.5.8 component for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_ab…
|
CWE-94
Code Injection
|
CVE-2007-5407
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260775
|
- |
|
cplinks
|
cpdynalinks
|
SQL injection vulnerability in category.php in cpDynaLinks 1.02 allows remote attackers to execute arbitrary SQL commands via the category parameter.
|
CWE-89
SQL Injection
|
CVE-2007-5408
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260776
|
- |
|
nuhit
|
nuseo_php_enterprise
|
PHP remote file inclusion vulnerability in admin/nuseo_admin_d.php in NuSEO PHP Enterprise 1.6 (NuSEO.PHP), when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via…
|
CWE-94
Code Injection
|
CVE-2007-5409
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260777
|
- |
|
quoc-huy
|
mp3_allopass
|
Multiple PHP remote file inclusion vulnerabilities in the Quoc-Huy MP3 Allopass (com_mp3_allopass) 1.0 component for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosC…
|
CWE-94
Code Injection
|
CVE-2007-5412
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260778
|
- |
|
perfection_bytes
|
pbemail
|
Absolute path traversal vulnerability in a certain ActiveX control in PBEmail7Ax.dll in PBEmail 7 ActiveX Edition allows remote attackers to create or overwrite arbitrary files via a full pathname in…
|
CWE-22
Path Traversal
|
CVE-2007-5446
|
2017-09-29 10:29 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260779
|
- |
|
ioncube
php
|
php_encoder
php
|
ioncube_loader_win_5.2.dll in the ionCube Loader 6.5 extension for PHP 5.2.4 does not follow safe_mode and disable_functions restrictions, which allows context-dependent attackers to bypass intended …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5447
|
2017-09-29 10:29 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260780
|
- |
|
softbiz
|
recipes_portal_script
|
SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote attackers to execute arbitrary SQL commands via the sbcat_id parameter.
|
CWE-89
SQL Injection
|
CVE-2007-5449
|
2017-09-29 10:29 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
