|
277401
|
- |
|
derek_leung
|
pslash
|
Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in (1) the lvc_admin_dir parameter to modules/visitors2/admin/view-arc…
|
CWE-94
Code Injection
|
CVE-2007-5014
|
2008-11-15 15:59 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277402
|
- |
|
apache
|
geronimo
|
Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows remote attackers to bypass authentication and obtain "access to Geronimo internals" via unspecified vecto…
|
CWE-287
Improper Authentication
|
CVE-2007-5085
|
2008-11-15 15:59 |
2007-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277403
|
- |
|
guanxicrm
|
guanxicrm_business_solution
|
PHP remote file inclusion vulnerability in modules/webmail2/inc/rfc822.php in guanxiCRM Business Solution 0.9.1 allows remote attackers to execute arbitrary PHP code via a URL in the webmail2_inc_dir…
|
CWE-94
Code Injection
|
CVE-2007-5096
|
2008-11-15 15:59 |
2007-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277404
|
- |
|
symantec
|
veritas_backup_exec
|
Unspecified vulnerability in the client in Symantec Veritas Backup Exec for Windows Servers 11d has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by…
|
NVD-CWE-noinfo
|
CVE-2007-5126
|
2008-11-15 15:59 |
2007-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277405
|
- |
|
microsoft
|
windows_live_messenger
|
Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to cause a denial of service (application crash or system crash) a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5144
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277406
|
- |
|
der_dirigent
|
der_dirigent
|
Multiple PHP remote file inclusion vulnerabilities in dedi-group Der Dirigent 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the dedi_path parameter to (1) inc.generate_code.ph…
|
CWE-94
Code Injection
|
CVE-2007-5146
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277407
|
- |
|
sitesys
|
sitesys
|
Multiple PHP remote file inclusion vulnerabilities in SiteSys 1.0a allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) inc/pagehead.inc.php or (2) inc/page…
|
CWE-94
Code Injection
|
CVE-2007-5166
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277408
|
- |
|
clanlite
|
clanlite
|
Multiple PHP remote file inclusion vulnerabilities in ClanLite 1.23.01.2005 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules/serveur_jeux.php o…
|
CWE-20
Improper Input Validation
|
CVE-2007-5168
|
2008-11-15 15:59 |
2007-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277409
|
- |
|
matteo
|
barbo91
|
Unrestricted file upload vulnerability in upload.php in Barbo91 1.1 allows remote attackers to upload and execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is …
|
CWE-20
Improper Input Validation
|
CVE-2007-4761
|
2008-11-15 15:58 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277410
|
- |
|
domino_blogsphere
|
domino_blogsphere
|
Cross-site scripting (XSS) vulnerability in Domino Blogsphere 3.01 Beta 7 allows remote attackers to inject arbitrary web script or HTML via the name field. NOTE: the provenance of this information …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4813
|
2008-11-15 15:58 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
