|
258381
|
- |
|
virtuemart
|
virtuemart
|
Unspecified vulnerability in the product view functionality in VirtueMart 1.0.13a and earlier allows remote attackers to read arbitrary files via vectors related to a template file.
|
CWE-20
Improper Input Validation
|
CVE-2008-7205
|
2017-08-17 10:29 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258382
|
- |
|
stefan_ritt
|
elog_web_logbook
|
Unspecified vulnerability in Electronic Logbook (ELOG) before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting (XSS).
|
CWE-79
Cross-site Scripting
|
CVE-2008-7206
|
2017-08-17 10:29 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258383
|
- |
|
horde
|
groupware
groupware_webmail_edition
horde
kronolith_h3
mnemo_h3
nag_h3
turba_h3
|
Unspecified vulnerability in the Horde API in Horde 3.1 before 3.1.6 and 3.2 before 3.2 before 3.2-RC2; Turba H3 2.1 before 2.1.6 and 2.2 before 2.2-RC2; Kronolith H3 2.1 before 2.1.7 and H3 2.2 befo…
|
NVD-CWE-noinfo
|
CVE-2008-7218
|
2017-08-17 10:29 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258384
|
- |
|
meridio
|
document_and_records_management
|
Cross-site scripting (XSS) vulnerability in Meridio Document and Records Management before 4.3 SR1 allows remote authenticated users to inject arbitrary web script or HTML via the Title field in a (1…
|
CWE-79
Cross-site Scripting
|
CVE-2008-7231
|
2017-08-17 10:29 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258385
|
- |
|
netplex-tech
|
xtacacsd
|
Buffer overflow in the report function in xtacacsd 4.1.2 and earlier allows remote attackers to execute arbitrary code via a crafted CONNECT TACACS command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-7232
|
2017-08-17 10:29 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258386
|
- |
|
fujitsu
|
fence
systemwalker_desktop_encryption
|
Fujitsu FENCE-Pro before V5L01, and Systemwalker Desktop Encryption V12.0L10, V12.0L10A, V12.0L10B, V12.0L20 and V13.0.0 allows local users to obtain sensitive information by extracting the decoding …
|
NVD-CWE-Other
|
CVE-2007-1505
|
2017-08-17 10:29 |
2007-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258387
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.11.1.2 allow remote attackers to inject arbitrary web script or HTML via certain input available in (1) PHP_SELF in (a) serv…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5589
|
2017-08-17 10:29 |
2007-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258388
|
- |
|
vidalia-project
|
vidalia_bundle
|
Vidalia bundle before 0.1.2.18, when running on Windows and Mac OS X, installs Privoxy with a configuration file (config.txt or config) that contains insecure (1) enable-remote-toggle and (2) enable-…
|
CWE-16
Configuration
|
CVE-2007-6722
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258389
|
- |
|
anonymityanywhere
|
tork
|
TorK before 0.22, when running on Windows and Mac OS X, installs Privoxy with a configuration file (config.txt or config) that contains insecure (1) enable-remote-toggle and (2) enable-edit-actions s…
|
CWE-16
Configuration
|
CVE-2007-6723
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258390
|
- |
|
vidalia-project
|
vidalia_bundle
|
Vidalia bundle before 0.1.2.18, when running on Windows, installs Privoxy with a configuration file (config.txt or config) that contains an insecure enable-remote-http-toggle setting, which allows re…
|
CWE-16
Configuration
|
CVE-2007-6724
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
