|
307021
|
- |
|
simon_brown
|
pebble
|
Cross-site scripting (XSS) vulnerability in Pebble before 2.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-0736
|
2012-11-8 14:00 |
2009-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307022
|
- |
|
freebsd
|
freebsd
|
sys/nfsclient/nfs_vfsops.c in the NFS client in the kernel in FreeBSD 7.2 through 8.1-PRERELEASE, when vfs.usermount is enabled, does not validate the length of a certain fhsize parameter, which allo…
|
CWE-20
Improper Input Validation
|
CVE-2010-2020
|
2012-11-6 13:41 |
2010-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307023
|
- |
|
ibm
|
aix
|
Buffer overflow in the swcons command in bos.rte.console in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2005-3504 and CVE-200…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4791
|
2012-11-6 12:46 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307024
|
- |
|
visionsoft
|
audit
|
The Visionsoft Audit on Demand Service (VSAOD) in Visionsoft Audit 12.4.0.0 does not require authentication for (1) the "LOG." command, which allows remote attackers to create or overwrite arbitrary …
|
NVD-CWE-Other
|
CVE-2007-4149
|
2012-11-6 12:44 |
2007-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307025
|
- |
|
nonnoi_solutions
|
asp_barcode
|
The Nonnoi ASP/Barcode ActiveX control (nonnoi_ASPBarcode.dll) allows remote attackers to overwrite arbitrary files via an argument to the SaveBarcode function.
|
NVD-CWE-Other
|
CVE-2007-3660
|
2012-11-6 12:42 |
2007-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307026
|
- |
|
jelsoft
|
vbulletin
|
Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin 3.6.x before 3.6.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to the…
|
NVD-CWE-Other
|
CVE-2007-2909
|
2012-11-6 12:40 |
2007-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307027
|
- |
|
jelsoft
|
vbulletin
|
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin before 3.6.7 PL1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to the vb_367_xss_fix_pl…
|
CWE-79
Cross-site Scripting
|
CVE-2007-2910
|
2012-11-6 12:40 |
2007-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307028
|
- |
|
microsoft
|
windows_2003_server
|
Microsoft Windows Server 2003, when time restrictions are in effect for user accounts, generates different error messages for failed login attempts with a valid user name than for those with an inval…
|
NVD-CWE-Other
|
CVE-2007-2999
|
2012-11-6 12:40 |
2007-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307029
|
- |
|
nagiosql
|
nagiosql
|
PHP remote file inclusion vulnerability in functions/prepend_adm.php in NagiosQL 2.00-P00 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SETS[path][IT] parameter. …
|
NVD-CWE-Other
|
CVE-2007-2710
|
2012-11-6 12:39 |
2007-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307030
|
- |
|
subversion
|
subversion
|
Subversion 1.4.3 and earlier does not properly implement the "partial access" privilege for users who have access to changed paths but not copied paths, which allows remote authenticated users to obt…
|
NVD-CWE-Other
|
CVE-2007-2448
|
2012-11-6 12:38 |
2007-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
