|
261401
|
- |
|
apple
|
mac_os_x
|
Unspecified vulnerability in Spotlight in Apple Mac OS X 10.4.11 allows user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted .XLS fil…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2007-5861
|
2017-07-29 10:33 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261402
|
- |
|
coppermine
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in displayecard.php in Coppermine Photo Gallery (CPG) before 1.4.14 allows remote attackers to inject arbitrary web script or HTML via the data parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5888
|
2017-07-29 10:33 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261403
|
- |
|
manageengine
|
opmanager
opmanager_msp
|
Multiple cross-site scripting (XSS) vulnerabilities in jsp/Login.do in ManageEngine OpManager MSP Edition and OpManager 7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) r…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5891
|
2017-07-29 10:33 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261404
|
- |
|
alhem
|
c\+\+_sockets_library
|
HTTPSocket.cpp in the C++ Sockets Library before 2.2.5 allows remote attackers to cause a denial of service (crash) via an HTTP request with a missing protocol version number, which triggers an excep…
|
CWE-20
Improper Input Validation
|
CVE-2007-5893
|
2017-07-29 10:33 |
2007-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261405
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 2.0.0.9 allows remote attackers to cause a denial of service (CPU consumption and crash) via an iframe with Javascript that sets the document.location to contain a leading NULL byte (…
|
CWE-399
Resource Management Errors
|
CVE-2007-5896
|
2017-07-29 10:33 |
2007-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261406
|
- |
|
adobe
|
coldfusion
|
Adobe ColdFusion 8 and MX 7 allows remote attackers to hijack sessions via unspecified vectors that trigger establishment of a session to a ColdFusion application in which the (1) CFID or (2) CFTOKEN…
|
CWE-255
Credentials Management
|
CVE-2007-5905
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261407
|
- |
|
picoflat_cms
|
picoflat_cms
|
index.php in Domenico Mancini PicoFlat CMS before 0.4.18 allows remote attackers to include certain files via unspecified vectors, possibly due to a directory traversal vulnerability. NOTE: this can…
|
CWE-22
Path Traversal
|
CVE-2007-5920
|
2017-07-29 10:33 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261408
|
- |
|
openbase_international_ltd
|
openbase
|
OpenBase 10.0.5 and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup, (2) OEMLicenseInstall, and possibly other sto…
|
CWE-20
Improper Input Validation
|
CVE-2007-5926
|
2017-07-29 10:33 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261409
|
- |
|
openbase_international_ltd
|
openbase
|
Buffer overflow in OpenBase 10.0.5 and earlier might allow remote authenticated users to execute arbitrary code or cause a denial of service (daemon crash) by creating a stored procedure with a long …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5929
|
2017-07-29 10:33 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261410
|
- |
|
cerberus
|
ftp_server
|
Cross-site scripting (XSS) vulnerability in the web interface in Cerberus FTP Server before 2.46 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5930
|
2017-07-29 10:33 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
