|
261271
|
- |
|
fenrir
|
grani
sleipnir
|
Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search fiel…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6002
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261272
|
- |
|
thomson
|
speedtouch
|
Cross-site scripting (XSS) vulnerability in cgi/b/ic/connect in the Thomson SpeedTouch 716 with firmware 5.4.0.14 allows remote attackers to inject arbitrary web script or HTML via the url parameter.…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6003
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261273
|
- |
|
webex_communications
|
webex_gpccontainer_activex_control
|
Unspecified vulnerability in the GpcContainer.GpcContainer.1 ActiveX control in WebEx allows remote attackers to cause a denial of service (memory access violation and crash) via (1) an invalid argum…
|
CWE-399
Resource Management Errors
|
CVE-2007-6005
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261274
|
- |
|
horde
|
framework
groupware_webmail_edition
horde
imp
|
IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to (1) delete arbitra…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6018
|
2017-07-29 10:33 |
2008-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261275
|
- |
|
atom
|
photoblog
|
Multiple cross-site scripting (XSS) vulnerabilities in atomPhotoBlog.php in Atom PhotoBlog 1.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Your Name, (2) Y…
|
NVD-CWE-Other
|
CVE-2007-3134
|
2017-07-29 10:32 |
2007-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261276
|
- |
|
opera
|
opera_browser
|
Visual truncation vulnerability in Opera 9.21 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after 34 characters, as de…
|
NVD-CWE-Other
|
CVE-2007-3142
|
2017-07-29 10:32 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261277
|
- |
|
kde
|
konqueror
|
Visual truncation vulnerability in Konqueror 3.5.5 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain numbe…
|
NVD-CWE-Other
|
CVE-2007-3143
|
2017-07-29 10:32 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261278
|
- |
|
mozilla
|
mozilla
|
Visual truncation vulnerability in Mozilla 1.7.12 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number…
|
NVD-CWE-Other
|
CVE-2007-3144
|
2017-07-29 10:32 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261279
|
- |
|
galeon
|
galeon_browser
|
Visual truncation vulnerability in Galeon 2.0.1 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number o…
|
NVD-CWE-Other
|
CVE-2007-3145
|
2017-07-29 10:32 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261280
|
- |
|
daniel_stenberg
|
c-ares
|
c-ares before 1.4.0 uses a predictable seed for the random number generator for the DNS Transaction ID field, which might allow remote attackers to spoof DNS responses by guessing the field value.
|
NVD-CWE-Other
|
CVE-2007-3152
|
2017-07-29 10:32 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
