|
284721
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
Cross-site scripting (XSS) vulnerability in tiki-special_chars.php in TikiWiki before 1.9.9 allows remote attackers to inject arbitrary web script or HTML via the area_name parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2007-6526
|
2018-10-16 06:54 |
2007-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284722
|
- |
|
ibm
|
tivoli_provisioning_manager_express
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Provisioning Manager Express allow remote attackers to inject arbitrary web script or HTML via the (1) "assess modification," (2) use…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6407
|
2018-10-16 06:53 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284723
|
- |
|
ibm
|
tivoli_provisioning_manager_express
|
IBM Tivoli Provisioning Manager Express provides unspecified information in error messages when (1) attempted duplication of a username occurs when creating an account or (2) when trying to login usi…
|
CWE-200
Information Exposure
|
CVE-2007-6408
|
2018-10-16 06:53 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284724
|
- |
|
gadu-gadu
|
gadu-gadu_instant_messenger
|
The gg protocol handler in Gadu-Gadu, when this product is installed but not running, does not properly handle the skin attribute, which allows remote attackers to cause a denial of service (resource…
|
CWE-16
Configuration
|
CVE-2007-6409
|
2018-10-16 06:53 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284725
|
- |
|
gadu-gadu
|
gadu-gadu_instant_messenger
|
Gadu-Gadu does not properly perform protocol handling, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and add arbitrary user accounts or cause a denial of service …
|
CWE-352
Origin Validation Error
|
CVE-2007-6410
|
2018-10-16 06:53 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284726
|
- |
|
gadu-gadu
|
gadu-gadu_instant_messenger
|
Multiple buffer overflows in the HandleEmotsConfig function in the GG Client in Gadu-Gadu 7.7 Build 3669 allow user-assisted remote attackers to execute arbitrary code or cause a denial of service (g…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6411
|
2018-10-16 06:53 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284727
|
- |
|
bitweaver
|
bitweaver
|
Direct static code injection vulnerability in wiki/index.php in Bitweaver 2.0.0 and earlier, when comments are enabled, allows remote attackers to inject arbitrary PHP code via an editcomments action.
|
CWE-94
Code Injection
|
CVE-2007-6412
|
2018-10-16 06:53 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284728
|
- |
|
hp
|
hp-ux
|
Unspecified vulnerability in HP-UX B.11.31, when running ARPA Transport, allows remote attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6425
|
2018-10-16 06:53 |
2008-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284729
|
- |
|
emc
|
replistor
|
Multiple heap-based buffer overflows in EMC RepliStor 6.2 SP2, and possibly earlier versions, allow remote attackers to execute arbitrary code via crafted compressed data.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6426
|
2018-10-16 06:53 |
2008-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284730
|
- |
|
x.org
|
tog-cup
xserver
|
The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request …
|
NVD-CWE-Other
|
CVE-2007-6428
|
2018-10-16 06:53 |
2008-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
