|
272301
|
- |
|
hitachi
|
cosminexus_application_server
cosminexus_application_server_version_5
cosminexus_developer_light_version_6
cosminexus_developer_professional_version_6
cosminexus_developer_standard_versio…
|
Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML …
|
NVD-CWE-Other
|
CVE-2007-0514
|
2011-03-8 11:49 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272302
|
- |
|
novell
|
access_manager_identity_server
|
Cross-site scripting (XSS) vulnerability in nidp/idff/sso in Novell Access Manager Identity Server before 3.0.0-1013 allows remote attackers to inject arbitrary web script or HTML via the IssueInstan…
|
NVD-CWE-Other
|
CVE-2007-0110
|
2011-03-8 11:48 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272303
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /L…
|
NVD-CWE-Other
|
CVE-2007-0117
|
2011-03-8 11:48 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272304
|
- |
|
igeneric
|
ig_shop
|
Multiple SQL injection vulnerabilities in display_review.php in iGeneric iG Shop 1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) user_login_cookie param…
|
NVD-CWE-Other
|
CVE-2007-0133
|
2011-03-8 11:48 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272305
|
- |
|
hp
|
openvms
|
Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "uninte…
|
NVD-CWE-Other
|
CVE-2007-0139
|
2011-03-8 11:48 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272306
|
- |
|
cisco
|
ip_contact_center_enterprise
ip_contact_center_hosted
unified_contact_center_enterprise
unified_contact_center_hosted
|
The JTapi Gateway process in Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, and Cisco IP Contact Center Hosted 5.0 through 7.1 allows remote att…
|
NVD-CWE-Other
|
CVE-2007-0198
|
2011-03-8 11:48 |
2007-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272307
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 5.0 through 5.1.1.0 allows remote attackers to obtain JSP source code and other sensitive information via certain "special URIs."
|
NVD-CWE-Other
|
CVE-2006-7165
|
2011-03-8 11:48 |
2007-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272308
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 5.1.1.9 and earlier allows remote attackers to obtain JSP source code and other sensitive information via "a specific JSP URL."
|
NVD-CWE-Other
|
CVE-2006-7166
|
2011-03-8 11:48 |
2007-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272309
|
- |
|
hosting_controller
|
hosting_controller
|
Directory traversal vulnerability in FolderManager/FolderManager.aspx in Hosting Controller 7c allows remote authenticated users to read and modify arbitrary files, and list arbitrary directories via…
|
NVD-CWE-Other
|
CVE-2006-6814
|
2011-03-8 11:47 |
2006-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272310
|
- |
|
mxmania
|
calendar_mx_basic
|
Calendar MX BASIC 1.0.2 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for cale…
|
NVD-CWE-Other
|
CVE-2006-6825
|
2011-03-8 11:47 |
2006-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
