|
299251
|
- |
|
webspell
|
webspell
|
Multiple SQL injection vulnerabilities in gallery.php in webSPELL 4.01.02 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) galleryID parameter. NOTE: The pr…
|
NVD-CWE-Other
|
CVE-2007-0492
|
2017-07-29 10:30 |
2007-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299252
|
- |
|
drupal
|
project
project_issue_tracking_module
|
Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 through 5.x before 20070123, a module for Drupal, allows remote authenticated users to execute arbitrary code by attaching a…
|
NVD-CWE-Other
|
CVE-2007-0505
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299253
|
- |
|
drupal
|
project
project_issue_tracking_module
|
The project_issue_access function in the Project issue tracking 4.7.0 through 5.x before 20070123 module for Drupal allows remote authenticated users to bypass other access control modules and obtain…
|
NVD-CWE-Other
|
CVE-2007-0506
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299254
|
- |
|
drupal
|
acidfree
|
SQL injection vulnerability in the Acidfree module for Drupal before 4.6.x-1.0, and before 4.7.x-1.0 in the 4.7 series, allows remote authenticated users with "create acidfree albums" privileges to e…
|
NVD-CWE-Other
|
CVE-2007-0507
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299255
|
- |
|
maklerplus
|
maklerplus
|
Multiple unspecified vulnerabilities in MaklerPlus before 1.2 have unknown impact and attack vectors, possibly relating to cross-site scripting (XSS) in the slogan parameter in main.tpl, or informati…
|
NVD-CWE-Other
|
CVE-2007-0509
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299256
|
- |
|
awffull
|
awffull
|
Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) preserve.c in AWFFull 3.7.1 and earlier have unknown impact and attack vectors. NOTE: some of these details are obtained from third p…
|
NVD-CWE-Other
|
CVE-2007-0510
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299257
|
- |
|
hitachi
|
hirdb_parallel_server
hirdb_single_server
hirdb_single_server_workgroup_edition
hirdb_workgroup_server
hirdb_datareplicator
|
Hitachi HiRDB Datareplicator 7HiRDB, 7(64), 6, 6(64), 5.0, and 5.0(64); and various products that bundle HiRDB Datareplicator; allows attackers to cause a denial of service (CPU consumption) via cert…
|
NVD-CWE-Other
|
CVE-2007-0513
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299258
|
- |
|
yana_framework
|
yana_framework
|
Yana Framework before 2.8.5a allows remote authenticated users with permissions to modify a guestbook profile to modify or delete arbitrary guestbook profiles via unspecified vectors. NOTE: The prov…
|
NVD-CWE-noinfo
|
CVE-2007-0516
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299259
|
- |
|
freewebshop
|
freewebshop
|
PHP remote file inclusion vulnerability in includes/login.php in FreeWebShop 2.2.3 and 2.2.4 before 20070123 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter.
|
NVD-CWE-Other
|
CVE-2007-0531
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299260
|
- |
|
drupal
|
project
project_issue_tracking_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the (1) Project issue tracking 4.7.0 through 5.x before 20070123 and (2) Project 4.6.0 through 5.x before 20070123 modules for Drupal allow remo…
|
NVD-CWE-Other
|
CVE-2007-0534
|
2017-07-29 10:30 |
2007-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
