|
258311
|
- |
|
easy_hosting_control_panel
|
easy_hosting_control_panel
|
Additional Information - http://www.securityfocus.com/bid/26623/info
|
CWE-20
Improper Input Validation
|
CVE-2007-6178
|
2017-09-29 10:29 |
2007-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258312
|
- |
|
kinson_chan_charray
|
cms
|
Multiple PHP remote file inclusion vulnerabilities in Charray's CMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the ccms_library_path parameter to (1) markdown.php and (2)…
|
CWE-20
Improper Input Validation
|
CVE-2007-6179
|
2017-09-29 10:29 |
2007-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258313
|
- |
|
project_alumni
|
project_alumni
|
Directory traversal vulnerability in index.php in Project Alumni 1.0.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the act parameter.
|
CWE-22
Path Traversal
|
CVE-2007-6184
|
2017-09-29 10:29 |
2007-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258314
|
- |
|
noah
|
noah
|
Multiple directory traversal vulnerabilities in PHP Content Architect (aka NoAh) 0.9 pre 1.2 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the filepath parameter to…
|
CWE-22
Path Traversal
|
CVE-2007-6187
|
2017-09-29 10:29 |
2007-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258315
|
- |
|
tumusika_evolution
|
tumusika_evolution
|
Multiple directory traversal vulnerabilities in TuMusika Evolution 1.7R5 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) langua…
|
CWE-22
Path Traversal
|
CVE-2007-6188
|
2017-09-29 10:29 |
2007-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258316
|
- |
|
neocrome
|
seditio
|
SQL injection vulnerability in plugins/search/search.php in Neocrome Seditio CMS 121 and earlier allows remote attackers to execute arbitrary SQL commands via the pag_sub[] parameter to plug.php.
|
CWE-89
SQL Injection
|
CVE-2007-6202
|
2017-09-29 10:29 |
2007-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258317
|
- |
|
neocrome
|
seditio
|
Successful exploitation requires that "magic_quotes_gpc" is disabled.
|
CWE-89
SQL Injection
|
CVE-2007-6202
|
2017-09-29 10:29 |
2007-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258318
|
- |
|
xensource_inc
|
xen
|
Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains.
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2007-6207
|
2017-09-29 10:29 |
2007-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258319
|
- |
|
google
|
kml
|
Directory traversal vulnerability in region.php in KML share 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the layer parameter.
|
CWE-22
Path Traversal
|
CVE-2007-6212
|
2017-09-29 10:29 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258320
|
- |
|
webed
|
webed
|
Multiple directory traversal vulnerabilities in mod/chat/index.php in WebED 0.0.9 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) Root and (2) Path parameters.
|
CWE-22
Path Traversal
|
CVE-2007-6213
|
2017-09-29 10:29 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
