|
266431
|
- |
|
enthusiast
|
enthusiast
|
Multiple SQL injection vulnerabilities in Enthusiast 3.1 allow remote attackers to execute arbitrary SQL commands via the cat parameter to (1) show_owned.php, (2) show_joined.php, and possibly other …
|
NVD-CWE-Other
|
CVE-2007-0484
|
2017-07-29 10:30 |
2007-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266432
|
- |
|
huawei
|
versatile_routing_platform
|
The Huawei Versatile Routing Platform 1.43 2500E-003 firmware on the Quidway R1600 Router, and possibly other models, allows remote attackers to cause a denial of service (device crash) via a long sh…
|
NVD-CWE-Other
|
CVE-2007-0488
|
2017-07-29 10:30 |
2007-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266433
|
- |
|
webspell
|
webspell
|
Multiple SQL injection vulnerabilities in gallery.php in webSPELL 4.01.02 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) galleryID parameter. NOTE: The pr…
|
NVD-CWE-Other
|
CVE-2007-0492
|
2017-07-29 10:30 |
2007-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266434
|
- |
|
drupal
|
project
project_issue_tracking_module
|
Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 through 5.x before 20070123, a module for Drupal, allows remote authenticated users to execute arbitrary code by attaching a…
|
NVD-CWE-Other
|
CVE-2007-0505
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266435
|
- |
|
drupal
|
project
project_issue_tracking_module
|
The project_issue_access function in the Project issue tracking 4.7.0 through 5.x before 20070123 module for Drupal allows remote authenticated users to bypass other access control modules and obtain…
|
NVD-CWE-Other
|
CVE-2007-0506
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266436
|
- |
|
drupal
|
acidfree
|
SQL injection vulnerability in the Acidfree module for Drupal before 4.6.x-1.0, and before 4.7.x-1.0 in the 4.7 series, allows remote authenticated users with "create acidfree albums" privileges to e…
|
NVD-CWE-Other
|
CVE-2007-0507
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266437
|
- |
|
maklerplus
|
maklerplus
|
Multiple unspecified vulnerabilities in MaklerPlus before 1.2 have unknown impact and attack vectors, possibly relating to cross-site scripting (XSS) in the slogan parameter in main.tpl, or informati…
|
NVD-CWE-Other
|
CVE-2007-0509
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266438
|
- |
|
awffull
|
awffull
|
Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) preserve.c in AWFFull 3.7.1 and earlier have unknown impact and attack vectors. NOTE: some of these details are obtained from third p…
|
NVD-CWE-Other
|
CVE-2007-0510
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266439
|
- |
|
hitachi
|
hirdb_parallel_server
hirdb_single_server
hirdb_single_server_workgroup_edition
hirdb_workgroup_server
hirdb_datareplicator
|
Hitachi HiRDB Datareplicator 7HiRDB, 7(64), 6, 6(64), 5.0, and 5.0(64); and various products that bundle HiRDB Datareplicator; allows attackers to cause a denial of service (CPU consumption) via cert…
|
NVD-CWE-Other
|
CVE-2007-0513
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266440
|
- |
|
yana_framework
|
yana_framework
|
Yana Framework before 2.8.5a allows remote authenticated users with permissions to modify a guestbook profile to modify or delete arbitrary guestbook profiles via unspecified vectors. NOTE: The prov…
|
NVD-CWE-noinfo
|
CVE-2007-0516
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
