|
257691
|
- |
|
webdesktop
|
webdesktop
|
Multiple PHP remote file inclusion vulnerabilities in WebDesktop 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) app parameter to apps/apps.php and the (2) wsk parameter…
|
CWE-94
Code Injection
|
CVE-2007-5388
|
2017-09-29 10:29 |
2007-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257692
|
- |
|
picoflat_cms
|
picoflat_cms
|
PHP remote file inclusion vulnerability in index.php in PicoFlat CMS 0.4.14 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pagina parameter.
|
CWE-94
Code Injection
|
CVE-2007-5390
|
2017-09-29 10:29 |
2007-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257693
|
- |
|
xpdf
|
xpdf
|
Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5392
|
2017-09-29 10:29 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257694
|
- |
|
xpdf
|
xpdf
|
Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5393
|
2017-09-29 10:29 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257695
|
- |
|
joomlaequipment
|
jcontentsubscription
|
Multiple PHP remote file inclusion vulnerabilities in the JContentSubscription (com_jcs) 1.5.8 component for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_ab…
|
CWE-94
Code Injection
|
CVE-2007-5407
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257696
|
- |
|
cplinks
|
cpdynalinks
|
SQL injection vulnerability in category.php in cpDynaLinks 1.02 allows remote attackers to execute arbitrary SQL commands via the category parameter.
|
CWE-89
SQL Injection
|
CVE-2007-5408
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257697
|
- |
|
nuhit
|
nuseo_php_enterprise
|
PHP remote file inclusion vulnerability in admin/nuseo_admin_d.php in NuSEO PHP Enterprise 1.6 (NuSEO.PHP), when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via…
|
CWE-94
Code Injection
|
CVE-2007-5409
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257698
|
- |
|
quoc-huy
|
mp3_allopass
|
Multiple PHP remote file inclusion vulnerabilities in the Quoc-Huy MP3 Allopass (com_mp3_allopass) 1.0 component for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosC…
|
CWE-94
Code Injection
|
CVE-2007-5412
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257699
|
- |
|
perfection_bytes
|
pbemail
|
Absolute path traversal vulnerability in a certain ActiveX control in PBEmail7Ax.dll in PBEmail 7 ActiveX Edition allows remote attackers to create or overwrite arbitrary files via a full pathname in…
|
CWE-22
Path Traversal
|
CVE-2007-5446
|
2017-09-29 10:29 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257700
|
- |
|
ioncube
php
|
php_encoder
php
|
ioncube_loader_win_5.2.dll in the ionCube Loader 6.5 extension for PHP 5.2.4 does not follow safe_mode and disable_functions restrictions, which allows context-dependent attackers to bypass intended …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5447
|
2017-09-29 10:29 |
2007-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
