|
299841
|
- |
|
phppgadmin
|
phppgadmin
|
Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, allows remote attackers to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) …
|
CWE-79
Cross-site Scripting
|
CVE-2007-5728
|
2017-07-29 10:33 |
2007-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299842
|
- |
|
wesnoth
|
wesnoth
|
Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown…
|
CWE-22
Path Traversal
|
CVE-2007-5742
|
2017-07-29 10:33 |
2007-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299843
|
- |
|
liferea
|
liferea
|
Liferea before 1.4.6 uses weak permissions (0644) for the feedlist.opml backup file, which allows local users to obtain credentials.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5751
|
2017-07-29 10:33 |
2007-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299844
|
- |
|
light_fman_php
|
light_fman_php
|
Unspecified vulnerability in Light FMan PHP (lfman or lightfman) before 2.0rc1 has unknown impact and attack vectors related to "actions."
|
NVD-CWE-noinfo
|
CVE-2007-5753
|
2017-07-29 10:33 |
2007-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299845
|
- |
|
aol
|
radio
|
Multiple stack-based buffer overflows in the AOL AmpX ActiveX control in AmpX.dll 2.6.1.11 in AOL Radio allow remote attackers to execute arbitrary code via long arguments to unspecified methods.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5755
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299846
|
- |
|
ibm
|
db2_universal_database
|
Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5758
|
2017-07-29 10:33 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299847
|
- |
|
motorola
|
netoctopus
|
The NantSys device 5.0.0.115 in Motorola netOctopus 5.1.2 build 1011 has weak permissions for the \\.\NantSys device interface (nantsys.sys), which allows local users to gain privileges or cause a de…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5761
|
2017-07-29 10:33 |
2008-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299848
|
- |
|
novell
|
netware_client
|
NICM.SYS driver 3.0.0.4, as used in Novell NetWare Client 4.91 SP4, allows local users to execute arbitrary code by opening the \\.\nicm device and providing crafted kernel addresses via IOCTLs with …
|
CWE-20
Improper Input Validation
|
CVE-2007-5762
|
2017-07-29 10:33 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299849
|
- |
|
gnu
|
emacs
|
The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attac…
|
NVD-CWE-Other
|
CVE-2007-5795
|
2017-07-29 10:33 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299850
|
- |
|
ibm
|
websphere_application_server
|
Multiple cross-site scripting (XSS) vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server (WAS) before 6.1.0 Fix Pack 13 (6.1.0.13) allow remote atta…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5798
|
2017-07-29 10:33 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
