261231
|
- |
|
infernotechnologies
|
rpg_inferno
|
SQL injection vulnerability in inferno.php in the Inferno Technologies RPG Inferno 2.4 and earlier, a vBulletin module, allows remote authenticated attackers to execute arbitrary SQL commands via the…
|
CWE-89
SQL Injection
|
CVE-2007-3687
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261232
|
- |
|
mail_machine
|
mail_machine
|
Directory traversal vulnerability in the load function in cgi-bin/mail/mailmachine.cgi in Mail Machine 3.989 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the arch…
|
NVD-CWE-Other
|
CVE-2007-3702
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261233
|
- |
|
zenturi
|
zenturi_programchecker
|
Stack-based buffer overflow in a certain ActiveX control in sasatl.dll 1.5.0.531 in Zenturi Program Checker (ProgramChecker) Pro allows remote attackers to execute arbitrary code via a long argument …
|
NVD-CWE-Other
|
CVE-2007-3703
|
2017-09-29 10:29 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261234
|
- |
|
redhat
|
enterprise_linux
|
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (O…
|
CWE-399 CWE-119
Resource Management Errors Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-3739
|
2017-09-29 10:29 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261235
|
- |
|
linux
|
linux_kernel
|
The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension support is enabled, does not honor the umask of a process, which allows local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-3740
|
2017-09-29 10:29 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261236
|
- |
|
psnews
|
psnews
|
Directory traversal vulnerability in news/show.php in PsNews 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the newspath parameter.
|
NVD-CWE-Other
|
CVE-2007-3772
|
2017-09-29 10:29 |
2007-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261237
|
- |
|
php
|
php
|
The com_print_typeinfo function in the bz2 extension in PHP 5.2.3 allows context-dependent attackers to cause a denial of service via a long argument.
|
NVD-CWE-Other
|
CVE-2007-3790
|
2017-09-29 10:29 |
2007-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261238
|
- |
|
php
|
php
|
The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to mem…
|
CWE-399 CWE-20
Resource Management Errors Improper Input Validation
|
CVE-2007-3806
|
2017-09-29 10:29 |
2007-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261239
|
- |
|
php_arena
|
pafiledb
|
SQL injection vulnerability in includes/search.php in paFileDB 3.6 allows remote attackers to execute arbitrary SQL commands via the categories[] parameter in a search action to index.php, a differen…
|
NVD-CWE-Other
|
CVE-2007-3808
|
2017-09-29 10:29 |
2007-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261240
|
- |
|
prozilla
|
prozilla_directory_script
|
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action to directory.php, and other unsp…
|
NVD-CWE-Other
|
CVE-2007-3809
|
2017-09-29 10:29 |
2007-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|