|
284851
|
- |
|
blue-collar_productions
|
i-gallery
|
Directory traversal vulnerability in igallery.asp in Blue-Collar Productions i-Gallery 3.4 allows remote attackers to read arbitrary files via encoded backslash sequences in the d parameter, as demon…
|
CWE-22
Path Traversal
|
CVE-2007-5776
|
2018-10-16 06:46 |
2007-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284852
|
- |
|
blue-collar_productions
|
i-gallery
|
Blue-Collar Productions i-Gallery 3.4 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing a base64-encoded pa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5777
|
2018-10-16 06:46 |
2007-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284853
|
- |
|
telematic_lab
|
teatro
|
PHP remote file inclusion vulnerability in pub/pub08_comments.php in teatro 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.
|
CWE-94
Code Injection
|
CVE-2007-5780
|
2018-10-16 06:46 |
2007-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284854
|
- |
|
phptoys
|
micro_login_system
|
Micro Login System 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing a password via a direct request fo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5787
|
2018-10-16 06:46 |
2007-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284855
|
- |
|
nss_ldap
|
nss_ldap
|
Race condition in nss_ldap, when used in applications that are linked against the pthread library and fork after a call to nss_ldap, might send user data to the wrong process because of improper hand…
|
CWE-362
Race Condition
|
CVE-2007-5794
|
2018-10-16 06:46 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284856
|
- |
|
firewolf_technologies
|
synergiser
|
Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p…
|
CWE-22
Path Traversal
|
CVE-2007-5802
|
2018-10-16 06:46 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284857
|
- |
|
ilias
|
ilias
|
Cross-site scripting (XSS) vulnerability in Services/Utilities/classes/class.ilUtil.php in ILIAS 3.8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via attributes inside…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5806
|
2018-10-16 06:46 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284858
|
- |
|
sonicwall
|
ssl_vpn
|
Multiple buffer overflows in the SonicWall SSL-VPN NetExtender NELaunchCtrl ActiveX control before 2.1.0.51, and 2.5.x before 2.5.0.56, allow remote attackers to execute arbitrary code via a long (1)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5814
|
2018-10-16 06:46 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284859
|
- |
|
sonicwall
|
ssl_vpn2000\/4000
ssl_vpn_200
|
Absolute path traversal vulnerability in the WebCacheCleaner ActiveX control 1.3.0.3 in SonicWall SSL-VPN 200 before 2.1, and SSL-VPN 2000/4000 before 2.5, allows remote attackers to delete arbitrary…
|
CWE-22
Path Traversal
|
CVE-2007-5815
|
2018-10-16 06:46 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284860
|
- |
|
sblog
|
sblog
|
Cross-site request forgery (CSRF) vulnerability in blocks_edit_do.php in sBlog 0.7.3 Beta allows remote attackers to change arbitrary blocks as administrators.
|
CWE-352
Origin Validation Error
|
CVE-2007-5818
|
2018-10-16 06:46 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
