|
258341
|
- |
|
mms_gallery
|
mms_gallery_php
|
Multiple directory traversal vulnerabilities in MMS Gallery PHP 1.0 allow remote attackers to read arbitrary files via a .. (dot dot) in the id parameter to (1) get_image.php or (2) get_file.php in m…
|
CWE-22
Path Traversal
|
CVE-2007-6323
|
2017-09-29 10:29 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258342
|
- |
|
city_writer
|
citywriter
|
PHP remote file inclusion vulnerability in head.php in CityWriter 0.9.7 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
|
CWE-94
Code Injection
|
CVE-2007-6324
|
2017-09-29 10:29 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258343
|
- |
|
fastpublish
|
fastpublish_cms
|
PHP remote file inclusion vulnerability in adminbereich/designconfig.php in Fastpublish CMS 1.9999 allows remote attackers to execute arbitrary PHP code via a URL in the config[fsBase] parameter, a d…
|
CWE-94
CWE-20
Code Injection
Improper Input Validation
|
CVE-2007-6325
|
2017-09-29 10:29 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258344
|
- |
|
sergey_lyubka
|
simple_httpd
|
Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI.
|
CWE-20
Improper Input Validation
|
CVE-2007-6326
|
2017-09-29 10:29 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258345
|
- |
|
avs_media
|
avsmjpegfile.dll
|
Buffer overflow in a certain ActiveX control in Online Media Technologies AVSMJPEGFILE.DLL 1.1.1.102 allows remote attackers to execute arbitrary code via a long first argument to the CreateStill met…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6327
|
2017-09-29 10:29 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258346
|
- |
|
clam_anti-virus
|
clamav
|
Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
|
CWE-189
Numeric Errors
|
CVE-2007-6335
|
2017-09-29 10:29 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258347
|
- |
|
mcms
|
easy_web_make
|
Directory traversal vulnerability in modules/cms/index.php in Mcms Easy Web Make 1.3, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.
|
CWE-22
Path Traversal
|
CVE-2007-6344
|
2017-09-29 10:29 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258348
|
- |
|
wordpress
|
pictpress
|
Multiple directory traversal vulnerabilities in resize.php in the PictPress 0.91 and earlier plugin for WordPress allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) size or …
|
CWE-22
Path Traversal
|
CVE-2007-6369
|
2017-09-29 10:29 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258349
|
- |
|
intuit
microsoft
vantage_linquistics
|
bookkeeping
proseries
quickbooks
quicken
quicktax
turbo_tax
activex
answerworks
|
Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickB…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6387
|
2017-09-29 10:29 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258350
|
- |
|
sh-news
|
sh-news
|
SQL injection vulnerability in patch/comments.php in SH-News 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2007-6391
|
2017-09-29 10:29 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
