|
260881
|
- |
|
stbernard
|
open_file_manager
|
Heap-based buffer overflow in Open File Manager service (ofmnt.exe) in St. Bernard Open File Manager 9.5 allows remote attackers to execute arbitrary code via a long request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6281
|
2017-08-8 10:29 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260882
|
- |
|
lxlabs
|
hypervm
|
Cross-site scripting (XSS) vulnerability in the login page in Lxlabs HyperVM 2.0 allows remote attackers to inject arbitrary web script or HTML via the frm_emessage parameter, a different vector than…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6287
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260883
|
- |
|
tecnick.com
|
tcexam
|
Multiple SQL injection vulnerabilities in TCExam before 5.1.000 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2007-6288
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260884
|
- |
|
xigla
|
absolute_banner_manager.net
|
SQL injection vulnerability in abm.aspx in Xigla Absolute Banner Manager .NET 4.0 allows remote attackers to execute arbitrary SQL commands via the z parameter.
|
CWE-89
SQL Injection
|
CVE-2007-6291
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260885
|
- |
|
ibm
|
hardware_management_console
|
Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 3 R3.7 allow attackers to gain privileges via "some HMC commands."
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6294
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260886
|
- |
|
ibm
|
lotus_sametime
|
Cross-site scripting (XSS) vulnerability in the WebRunMenuFrame page in the online meeting center template in IBM Lotus Sametime before 8.0 allows remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6295
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260887
|
- |
|
drupal
|
shoutbox
|
Cross-site scripting (XSS) vulnerability in the Shoutbox module for Drupal 5.x before Shoutbox 5.x-1.1 allows remote authenticated users to inject arbitrary web script or HTML via Shoutbox block mess…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6298
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260888
|
- |
|
drupal
|
drupal
|
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL commands via modules that pass input to the taxonom…
|
CWE-89
CWE-20
SQL Injection
Improper Input Validation
|
CVE-2007-6299
|
2017-08-8 10:29 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260889
|
- |
|
clam_anti-virus
|
clamav
|
Off-by-one error in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MS-ZIP compressed CAB file.
|
CWE-189
CWE-119
Numeric Errors
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6336
|
2017-08-8 10:29 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260890
|
- |
|
akamai_technologies
|
download_manager
|
The Akamai Download Manager (aka DLM or dlmanager) ActiveX control (DownloadManagerV2.ocx) before 2.2.3.5 allows remote attackers to force the download and execution of arbitrary code via unspecified…
|
CWE-94
Code Injection
|
CVE-2007-6339
|
2017-08-8 10:29 |
2008-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
