|
261521
|
- |
|
bitego
|
bosdatagrid
|
Multiple cross-site scripting (XSS) vulnerabilities in bosDataGrid 2.50 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) GridSearch, (2) gsearch, or (3) ParentID …
|
NVD-CWE-Other
|
CVE-2007-3413
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261522
|
- |
|
access2asp
|
access2asp
|
Multiple cross-site scripting (XSS) vulnerabilities in access2asp 4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) od and (2) search parameters to (a) supplie…
|
NVD-CWE-Other
|
CVE-2007-3414
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261523
|
- |
|
phpraider
|
phpraider
|
Multiple SQL injection vulnerabilities in index.php in phpRaider 1.0.0 rc8 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) type parameter.
|
NVD-CWE-Other
|
CVE-2007-3415
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261524
|
- |
|
web-app.org
web_app.net
|
webapp
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the administration of (1) polls, (2) profiles, (3) IP bans, and (4) forums in (a) web-app.org WebAPP 0.8 through 0.9.9.6; and (b) web-app…
|
CWE-352
Origin Validation Error
|
CVE-2007-3416
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261525
|
- |
|
trend_micro
|
officescan
|
Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonst…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-3454
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261526
|
- |
|
trend_micro
|
officescan
|
cgiChkMasterPwd.exe before 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to bypass the password requirement and gain access to the Management Console via an empty …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-3455
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261527
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file.
|
CWE-352
Origin Validation Error
|
CVE-2007-3457
|
2017-07-29 10:32 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261528
|
- |
|
rim
|
blackberry_enterprise_server
|
Research in Motion BlackBerry Enterprise Server 4.0 through 4.1 has a default configuration that permits installation of arbitrary third-party applications on BlackBerry devices, which might facilita…
|
NVD-CWE-Other
|
CVE-2007-3483
|
2017-07-29 10:32 |
2007-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261529
|
- |
|
htmlpurifier
|
htmlpurifier
|
Cross-site scripting (XSS) vulnerability in smoketests/configForm.php in HTML Purifier before 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "…
|
NVD-CWE-Other
|
CVE-2007-3498
|
2017-07-29 10:32 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261530
|
- |
|
directadmin
|
directadmin
|
Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vecto…
|
NVD-CWE-Other
|
CVE-2007-3501
|
2017-07-29 10:32 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
