|
256891
|
- |
|
av_scripts
|
av_tutorial_script
|
changePW.php in AV Tutorial Script (avtutorial) 1.0 does not require authentication or knowledge of an old password for password changes, which allows remote attackers to change passwords for arbitra…
|
NVD-CWE-Other
|
CVE-2007-3630
|
2017-09-29 10:29 |
2007-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256892
|
- |
|
gamesitescript
|
gamesitescript
|
SQL injection vulnerability in index.php in GameSiteScript (gss) 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the params parameter, related to missing input validatio…
|
NVD-CWE-Other
|
CVE-2007-3631
|
2017-09-29 10:29 |
2007-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256893
|
- |
|
limesurvey
|
limesurvey
|
Multiple PHP remote file inclusion vulnerabilities in LimeSurvey (aka PHPSurveyor) 1.49RC2 allow remote attackers to execute arbitrary PHP code via a URL in the homedir parameter to (1) OLE/PPS/File.…
|
NVD-CWE-Other
|
CVE-2007-3632
|
2017-09-29 10:29 |
2007-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256894
|
- |
|
chilkat_software
|
chilkat_zip_activex_control
|
Absolute path traversal vulnerability in the Chilkat Software Chilkat Zip ActiveX control in ChilkatZip2.dll 12.4.2.0 allows remote attackers to create or overwrite arbitrary files via a full pathnam…
|
NVD-CWE-Other
|
CVE-2007-3633
|
2017-09-29 10:29 |
2007-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256895
|
- |
|
hp
|
photo_digital_imaging_activex_control
|
Absolute path traversal vulnerability in a certain ActiveX control in hpqvwocx.dll 2.1.0.556 in Hewlett-Packard (HP) Digital Imaging allows remote attackers to create or overwrite arbitrary files via…
|
NVD-CWE-Other
|
CVE-2007-3649
|
2017-09-29 10:29 |
2007-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256896
|
- |
|
openld
|
openld
|
SQL injection vulnerability in index.php in OpenLD 1.2.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
NVD-CWE-Other
|
CVE-2007-3682
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256897
|
- |
|
infernotechnologies
|
rpg_inferno
|
SQL injection vulnerability in inferno.php in the Inferno Technologies RPG Inferno 2.4 and earlier, a vBulletin module, allows remote authenticated attackers to execute arbitrary SQL commands via the…
|
CWE-89
SQL Injection
|
CVE-2007-3687
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256898
|
- |
|
mail_machine
|
mail_machine
|
Directory traversal vulnerability in the load function in cgi-bin/mail/mailmachine.cgi in Mail Machine 3.989 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the arch…
|
NVD-CWE-Other
|
CVE-2007-3702
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256899
|
- |
|
zenturi
|
zenturi_programchecker
|
Stack-based buffer overflow in a certain ActiveX control in sasatl.dll 1.5.0.531 in Zenturi Program Checker (ProgramChecker) Pro allows remote attackers to execute arbitrary code via a long argument …
|
NVD-CWE-Other
|
CVE-2007-3703
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256900
|
- |
|
redhat
|
enterprise_linux
|
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (O…
|
CWE-399
CWE-119
Resource Management Errors
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-3739
|
2017-09-29 10:29 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
