|
261291
|
- |
|
skadate
|
skadate_online_dating_software
|
Multiple directory traversal vulnerabilities in SkaDate 5.0 and 6.0, and possibly later versions such as 6.482, allow remote attackers to read arbitrary files via a .. (dot dot) in the view_mode para…
|
CWE-22
Path Traversal
|
CVE-2007-5299
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261292
|
- |
|
hp
|
hp-ux
|
Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers …
|
CWE-79
Cross-site Scripting
|
CVE-2007-5302
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261293
|
- |
|
php_homepage_m
|
php_homepage_m
|
SQL injection vulnerability in galerie.php in PHP Homepage M (phpHPm) 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a show …
|
CWE-89
SQL Injection
|
CVE-2007-5308
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261294
|
- |
|
joomla
webmaster-tips.net
|
joomla
flash_image_gallery
|
PHP remote file inclusion vulnerability in admin.wmtgallery.php in the webmaster-tips.net Flash Image Gallery (com_wmtgallery) 1.0 component for Joomla! allows remote attackers to execute arbitrary P…
|
CWE-94
Code Injection
|
CVE-2007-5309
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261295
|
- |
|
joomla
webmaster-tips.net
|
joomla
flash_image_gallery
|
PHP remote file inclusion vulnerability in admin.wmtportfolio.php in the webmaster-tips.net wmtportfolio 1.0 (com_wmtportfolio) component for Joomla! allows remote attackers to execute arbitrary PHP …
|
CWE-94
Code Injection
|
CVE-2007-5310
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261296
|
- |
|
script-solution.de
|
picturesolution
|
PHP remote file inclusion vulnerability in install/config.php in Picturesolution 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
|
CWE-94
Code Injection
|
CVE-2007-5313
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261297
|
- |
|
xkiosk
|
xkiosk_web
|
PHP remote file inclusion vulnerability in system/funcs/xkurl.php in xKiosk WEB 3.0.1i, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the PEARPA…
|
CWE-94
Code Injection
|
CVE-2007-5314
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261298
|
- |
|
xkiosk
|
xkiosk_web
|
The vendor has provided the following patch information:
The patch is located at
http://xkiosk.net/xkiosk.3.0.1j.web.5314.fix.zip
How to apply the fix:
Extract "upload" folder contents to you…
|
CWE-94
Code Injection
|
CVE-2007-5314
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261299
|
- |
|
softpedia
|
livealbum
|
PHP remote file inclusion vulnerability in common.php in LiveAlbum 0.9.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the livealbum_dir parame…
|
CWE-94
Code Injection
|
CVE-2007-5315
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261300
|
- |
|
softbizscripts
|
softbiz_jobs_and_recruitment_script
|
SQL injection vulnerability in browsecats.php in Softbiz Jobs and Recruitment Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
CWE-89
SQL Injection
|
CVE-2007-5316
|
2017-09-29 10:29 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
