|
261411
|
- |
|
orangehrm
|
orangehrm
|
The reDirect function in lib/controllers/RepViewController.php in OrangeHRM before 2.2.2 does not verify the privileges of a user, which allows remote attackers to obtain access to data via unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5931
|
2017-07-29 10:33 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261412
|
- |
|
fatwire
|
fatwire_content_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Fatwire Content Server (CS) CMS 6.3.0 allow remote attackers to inject arbitrary web script or HTML via unspecified form fields related to the (…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5932
|
2017-07-29 10:33 |
2007-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261413
|
- |
|
bandersnatch
|
bandersnatch
|
Bandersnatch 0.4 allows remote attackers to obtain sensitive information via a malformed request for index.php with (1) a certain func parameter value; or (2) certain func, jid, page, and limit param…
|
NVD-CWE-noinfo
|
CVE-2007-5942
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261414
|
- |
|
usvn
|
user-friendly_svn
|
USVN before 0.6.5 allows remote attackers to obtain a list of repository contents via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5945
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261415
|
- |
|
ibm
|
tivoli_service_desk
|
Cross-site scripting (XSS) vulnerability in IBM Tivoli Service Desk 6.2 allows remote authenticated users to inject arbitrary web script or HTML via the Description parameter in a Maximo change actio…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5949
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261416
|
- |
|
netcommons
|
netcommons
|
Cross-site scripting (XSS) vulnerability in NetCommons before 1.0.11, and 1.1.x before 1.1.2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulne…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5950
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261417
|
- |
|
updir
|
updir.net
|
Cross-site scripting (XSS) vulnerability in updir.php in UPDIR.NET before 2.04 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5955
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261418
|
- |
|
ibm
|
informix_dynamic_server
|
Directory traversal vulnerability in IBM Informix Dynamic Server (IDS) before 10.00.xC7W1 allows local users to gain privileges by referencing modified NLS message files through directory traversal s…
|
CWE-22
Path Traversal
|
CVE-2007-5956
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261419
|
- |
|
ibm
|
informix_dynamic_server
|
Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 10.00.TC3TL and 11.10.TB4TL on Windows allows attackers to cause a denial of service (application crash) via unspecified SQ_ONASSIST req…
|
NVD-CWE-noinfo
|
CVE-2007-5957
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261420
|
- |
|
kde
|
kde
|
Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumption) via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2007-5963
|
2017-07-29 10:33 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
