|
257061
|
- |
|
phpmytourney
|
phpmytourney
|
PHP remote file inclusion vulnerability in menu.php in phpMytourney allows remote attackers to execute arbitrary PHP code via a URL in the functions_file parameter.
|
CWE-20
Improper Input Validation
|
CVE-2007-4757
|
2017-09-29 10:29 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257062
|
- |
|
tim_jackson
|
phpof
|
PHP remote file inclusion vulnerability in dbmodules/DB_adodb.class.php in PHP Object Framework (PHPOF) 20040226 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the PHP…
|
CWE-94
Code Injection
|
CVE-2007-4763
|
2017-09-29 10:29 |
2007-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257063
|
- |
|
microsoft
|
visual_basic
|
Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4776
|
2017-09-29 10:29 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257064
|
- |
|
joomla
|
joomla
|
administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Pa…
|
CWE-20
Improper Input Validation
|
CVE-2007-4781
|
2017-09-29 10:29 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257065
|
- |
|
ourgame.com
|
globallink
|
Multiple heap-based buffer overflows in GlobalLink 2.7.0.8 allow remote attackers to execute arbitrary code via (1) a long eighth argument to the SetInfo method in a certain ActiveX control in glItem…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4802
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257066
|
- |
|
atomix_productions
|
atomixmp3
|
Buffer overflow in AtomixMP3 2.3 allows user-assisted remote attackers to execute arbitrary code via long strings in file and title fields in a .pls file, as demonstrated by the (1) File1 and (2) Tit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4803
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257067
|
- |
|
auracms
|
auracms
|
Multiple SQL injection vulnerabilities in AuraCMS 1.5rc allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) hal.php, (2) cetak.php, (3) lihat.php, (4) pesan.php, and …
|
CWE-89
SQL Injection
|
CVE-2007-4804
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257068
|
- |
|
fuzzylime
|
fuzzylime
|
Directory traversal vulnerability in getgalldata.php in fuzzylime (cms) 3.0 and earlier allows remote attackers to include arbitrary local files via a .. (dot dot) in the p parameter.
|
CWE-22
Path Traversal
|
CVE-2007-4805
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257069
|
- |
|
focus_sis
|
focus_sis
|
PHP remote file inclusion vulnerability in modules/Discipline/CategoryBreakdownTime.php in Focus/SIS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the FocusPath parameter.
|
CWE-94
Code Injection
|
CVE-2007-4806
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257070
|
- |
|
focus_sis
|
focus_sis
|
Multiple PHP remote file inclusion vulnerabilities in Focus/SIS 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the staticpath parameter to (1) modules/Discipline/CategoryBreakd…
|
CWE-94
Code Injection
|
CVE-2007-4807
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
