|
259751
|
- |
|
2532gigs
|
2532gigs
|
Directory traversal vulnerability in activateuser.php in 2532|Gigs 1.2.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
|
CWE-22
Path Traversal
|
CVE-2007-4585
|
2017-09-29 10:29 |
2007-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259752
|
- |
|
php
|
php
|
Multiple buffer overflows in php_iisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as dem…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4586
|
2017-09-29 10:29 |
2007-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259753
|
- |
|
turnkey_web_tools
|
sunshop_shopping_cart
|
SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, …
|
CWE-89
SQL Injection
|
CVE-2007-4597
|
2017-09-29 10:29 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259754
|
- |
|
implied_by_design
|
micro_cms
|
SQL injection vulnerability in cms/revert-content.php in Implied by Design Micro CMS (Micro-CMS) 3.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2007-4602
|
2017-09-29 10:29 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259755
|
- |
|
altercoder
|
acg_news
|
Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid paramet…
|
CWE-89
SQL Injection
|
CVE-2007-4603
|
2017-09-29 10:29 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259756
|
- |
|
dinkumsoft.com
|
dl_paycart
|
SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
|
CWE-89
SQL Injection
|
CVE-2007-4604
|
2017-09-29 10:29 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259757
|
- |
|
vwar
|
virtual_war
|
PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a d…
|
CWE-94
Code Injection
|
CVE-2007-4605
|
2017-09-29 10:29 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259758
|
- |
|
phpnuke-clan
|
phpnuke-clan
|
PHP remote file inclusion vulnerability in convert/mvcw_conver.php in the Virtual War (VWar) module for PHPNuke-Clan (PNC) 4.2.0 and earlier allows remote attackers to execute arbitrary PHP code via …
|
CWE-94
Code Injection
|
CVE-2007-4606
|
2017-09-29 10:29 |
2007-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259759
|
- |
|
flac
nullsoft
|
libflac
winamp
|
Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code vi…
|
CWE-189
Numeric Errors
|
CVE-2007-4619
|
2017-09-29 10:29 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259760
|
- |
|
ibm
|
aix
|
Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4623
|
2017-09-29 10:29 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
