|
264061
|
- |
|
drupal
|
acidfree
|
SQL injection vulnerability in the Acidfree module for Drupal before 4.6.x-1.0, and before 4.7.x-1.0 in the 4.7 series, allows remote authenticated users with "create acidfree albums" privileges to e…
|
NVD-CWE-Other
|
CVE-2007-0507
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264062
|
- |
|
maklerplus
|
maklerplus
|
Multiple unspecified vulnerabilities in MaklerPlus before 1.2 have unknown impact and attack vectors, possibly relating to cross-site scripting (XSS) in the slogan parameter in main.tpl, or informati…
|
NVD-CWE-Other
|
CVE-2007-0509
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264063
|
- |
|
awffull
|
awffull
|
Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) preserve.c in AWFFull 3.7.1 and earlier have unknown impact and attack vectors. NOTE: some of these details are obtained from third p…
|
NVD-CWE-Other
|
CVE-2007-0510
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264064
|
- |
|
hitachi
|
hirdb_parallel_server
hirdb_single_server
hirdb_single_server_workgroup_edition
hirdb_workgroup_server
hirdb_datareplicator
|
Hitachi HiRDB Datareplicator 7HiRDB, 7(64), 6, 6(64), 5.0, and 5.0(64); and various products that bundle HiRDB Datareplicator; allows attackers to cause a denial of service (CPU consumption) via cert…
|
NVD-CWE-Other
|
CVE-2007-0513
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264065
|
- |
|
yana_framework
|
yana_framework
|
Yana Framework before 2.8.5a allows remote authenticated users with permissions to modify a guestbook profile to modify or delete arbitrary guestbook profiles via unspecified vectors. NOTE: The prov…
|
NVD-CWE-noinfo
|
CVE-2007-0516
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264066
|
- |
|
freewebshop
|
freewebshop
|
PHP remote file inclusion vulnerability in includes/login.php in FreeWebShop 2.2.3 and 2.2.4 before 20070123 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter.
|
NVD-CWE-Other
|
CVE-2007-0531
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264067
|
- |
|
drupal
|
project
project_issue_tracking_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the (1) Project issue tracking 4.7.0 through 5.x before 20070123 and (2) Project 4.6.0 through 5.x before 20070123 modules for Drupal allow remo…
|
NVD-CWE-Other
|
CVE-2007-0534
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264068
|
- |
|
rpath
|
rpath_linux
|
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2007-0536
|
2017-07-29 10:30 |
2007-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264069
|
- |
|
oh_no_not_another_cms
|
oh_no_not_another_cms
|
Cross-site scripting (XSS) vulnerability in install/default/error404.html in Oh no! Not another CMS (Onnac) 0.0.8.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the …
|
NVD-CWE-Other
|
CVE-2007-0552
|
2017-07-29 10:30 |
2007-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264070
|
- |
|
symantec
|
web_security
|
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Web Security (SWS) before 3.0.1.85 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1)…
|
NVD-CWE-Other
|
CVE-2007-0563
|
2017-07-29 10:30 |
2007-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
