|
264911
|
- |
|
invision_power_services
|
invision_power_board
|
Unspecified vulnerability in the subscriptions manager in Invision Power Board (IPB or IP.Board) 2.3.1 before 20070912 allows remote authenticated users to change the member ID and reduce the privile…
|
CWE-20
Improper Input Validation
|
CVE-2007-4914
|
2017-07-29 10:33 |
2007-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264912
|
- |
|
jasmine_technologies
|
lettergrade
|
Multiple cross-site scripting (XSS) vulnerabilities in LetterGrade allow remote attackers to inject arbitrary web script or HTML via (1) a student's email address, (2) the year parameter to genbrws/S…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4945
|
2017-07-29 10:33 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264913
|
- |
|
jasmine_technologies
|
lettergrade
|
LetterGrade allows remote attackers to obtain sensitive information (installation path or account existence) via unspecified vectors. NOTE: the provenance of this information is unknown; the details …
|
NVD-CWE-noinfo
|
CVE-2007-4946
|
2017-07-29 10:33 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264914
|
- |
|
tinywebgallery
|
tinywebgallery
|
Multiple cross-site scripting (XSS) vulnerabilities in TinyWebGallery (TWG) 1.6.3.4 allow remote attackers to inject arbitrary web script or HTML via the URI for (1) index.php, (2) i_frames/i_login.p…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4958
|
2017-07-29 10:33 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264915
|
- |
|
jelsoft
|
oscmax
|
Cross-site scripting (XSS) vulnerability in catalog_products_with_images.php in osCMax 2.0.0-RC3-0-1 allows remote attackers to inject arbitrary web script or HTML via the URI. NOTE: the provenance …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4959
|
2017-07-29 10:33 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264916
|
- |
|
microsoft
|
isa_server
|
The SOCKS4 Proxy in Microsoft Internet Security and Acceleration (ISA) Server 2004 SP1 and SP2 allows remote attackers to obtain potentially sensitive information (the destination IP address of anoth…
|
CWE-200
Information Exposure
|
CVE-2007-4991
|
2017-07-29 10:33 |
2007-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264917
|
- |
|
wilson_windowware
|
webbatch
|
Cross-site scripting (XSS) vulnerability in WebBatch allows remote attackers to inject arbitrary web script or HTML via the URL to webbatch.exe.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5010
|
2017-07-29 10:33 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264918
|
- |
|
phpwebgallery
|
phpwebgallery
|
Cross-site scripting (XSS) vulnerability in picture.php in PhpWebGallery 1.7.0, when Comments for all is enabled, allows remote attackers to inject arbitrary web script or HTML via the author paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5012
|
2017-07-29 10:33 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264919
|
- |
|
phormer
|
phormer
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Phormer 3.31 allow remote attackers to inject arbitrary web script or HTML via the (1) u, (2) p, (3) c, and (4) s parameters, and o…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5013
|
2017-07-29 10:33 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264920
|
- |
|
dibbler
|
dibbler
|
Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service (daemon crash)…
|
CWE-189
CWE-119
CWE-20
Numeric Errors
Incorrect Access of Indexable Resource ('Range Error')
Improper Input Validation
|
CVE-2007-5029
|
2017-07-29 10:33 |
2007-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
