|
259841
|
- |
|
airdefense
|
airsensor
|
Multiple buffer overflows in the AirDefense Airsensor M520 with firmware 4.3.1.1 and 4.4.1.4 allow remote authenticated users to cause a denial of service (HTTPS service outage) via a crafted query s…
|
CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error')
Improper Input Validation
|
CVE-2007-5036
|
2017-09-29 10:29 |
2007-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259842
|
- |
|
izicontents
|
izicontents
|
Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in (1) the admin_home parameter to modules/poll/poll_summ…
|
CWE-94
Code Injection
|
CVE-2007-5053
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259843
|
- |
|
izicontents
|
izicontents
|
Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the gsLanguage parameter to (1) search/search.php…
|
CWE-94
Code Injection
|
CVE-2007-5054
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259844
|
- |
|
izicontents
|
izicontents
|
Multiple directory traversal vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the admin_home parameter to…
|
CWE-22
Path Traversal
|
CVE-2007-5055
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259845
|
- |
|
adodb_lite
cmsmadesimple
journalness
open-realty
pacercms
sapid
|
adodb_lite
cms_made_simple
journalness
open-realty
pacercms
sapid_cmf
|
Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remo…
|
CWE-94
Code Injection
|
CVE-2007-5056
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259846
|
- |
|
clansphere
|
clansphere
|
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter to index.php in a banners action.
|
CWE-89
SQL Injection
|
CVE-2007-5061
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259847
|
- |
|
adam_scheinberg
|
flip
|
account.php in Adam Scheinberg Flip 3.0 and earlier allows remote attackers to create administrative accounts via the un parameter in a register action.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5062
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259848
|
- |
|
adam_scheinberg
|
flip
|
Adam Scheinberg Flip 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing login credentials vi…
|
CWE-255
Credentials Management
|
CVE-2007-5063
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259849
|
- |
|
joomla
webmaster-tips
|
joomla
flash_slide_show
|
PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mo…
|
CWE-94
Code Injection
|
CVE-2007-5065
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259850
|
- |
|
imatix
|
xitami
|
Multiple buffer overflows in iMatix Xitami Web Server 2.5c2 allow remote attackers to execute arbitrary code via a long If-Modified-Since header to (1) xigui32.exe or (2) xitami.exe.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5067
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
