|
261561
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in the API pretty-printing mode in MediaWiki 1.8.0 through 1.8.4, 1.9.0 through 1.9.3, 1.10.0 through 1.10.1, and the 1.11 development versions before 1.11.0 …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4828
|
2017-07-29 10:33 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261562
|
- |
|
directadmin
|
directadmin
|
Cross-site scripting (XSS) vulnerability in CMD_BANDWIDTH_BREAKDOWN in DirectAdmin 1.30.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2007-4830
|
2017-07-29 10:33 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261563
|
- |
|
torrenttrader
|
torrenttrader
|
Multiple cross-site scripting (XSS) vulnerabilities in account_settings.php in TorrentTrader 1.07 allow remote attackers to inject arbitrary web script or HTML via the (1) avatar and (2) title parame…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4831
|
2017-07-29 10:33 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261564
|
- |
|
immersion_games
|
cellfactor_revolution
|
Format string vulnerability in CellFactor Revolution 1.03 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a malformed nickname.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2007-4832
|
2017-07-29 10:33 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261565
|
- |
|
ibm
|
websphere_application_server
|
Unspecified vulnerability in the Edge Component in IBM WebSphere Application Server (WAS) 6.1 before Fix Pack 11 (6.1.0.11) has unknown impact and attack vectors, aka PK44789.
|
NVD-CWE-noinfo
|
CVE-2007-4833
|
2017-07-29 10:33 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261566
|
- |
|
immersion_games
|
cellfactor_revolution
|
Multiple buffer overflows in CellFactor Revolution 1.03 and earlier allow remote attackers to execute arbitrary code via a long string in a (1) 0x21, (2) 0x22, or (3) 0x23 packet.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4838
|
2017-07-29 10:33 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261567
|
- |
|
ibm
|
tivoli_storage_manager_client
|
Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4880
|
2017-07-29 10:33 |
2007-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261568
|
- |
|
swsoft
|
plesk
|
Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to (1) login.php3 o…
|
CWE-89
SQL Injection
|
CVE-2007-4892
|
2017-07-29 10:33 |
2007-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261569
|
- |
|
wordpress
|
wordpress
|
wp-admin/admin-functions.php in Wordpress before 2.2.3 and Wordpress multi-user (MU) before 1.2.5a does not properly verify the unfiltered_html privilege, which allows remote attackers to conduct cro…
|
CWE-352
Origin Validation Error
|
CVE-2007-4893
|
2017-07-29 10:33 |
2007-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261570
|
- |
|
wordpress
|
wordpress
|
There is an input validation error in the wp-admin/admin-functions.php script when processing the no_filter parameter.
|
CWE-352
Origin Validation Error
|
CVE-2007-4893
|
2017-07-29 10:33 |
2007-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
