|
299031
|
- |
|
kaspersky_lab
|
kaspersky_anti-virus
kaspersky_internet_security
|
The vendor has addressed this vulnerability within Maintenance Pack 2. More information is available from the following link:
http://www.kaspersky.com/technews?id=203038693
|
NVD-CWE-Other
|
CVE-2007-1880
|
2017-07-29 10:31 |
2007-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299032
|
- |
|
hp
|
mercury_quality_center
|
qcbin/servlet/tdservlet/TDAPI_GeneralWebTreatment in HP Mercury Quality Center 9.0 build 9.1.0.4352 allows remote authenticated users to execute arbitrary SQL commands via the RunQuery method.
|
NVD-CWE-Other
|
CVE-2007-1882
|
2017-07-29 10:31 |
2007-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299033
|
- |
|
php
|
php
|
Integer overflow in the str_replace function in PHP 4.4.5 and PHP 5.2.1 allows context-dependent attackers to have an unknown impact via a single character search string in conjunction with a single …
|
NVD-CWE-Other
|
CVE-2007-1886
|
2017-07-29 10:31 |
2007-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299034
|
- |
|
php
|
php
|
Integer signedness error in the _zend_mm_alloc_int function in the Zend Memory Manager in PHP 5.2.0 allows remote attackers to execute arbitrary code via a large emalloc request, related to an incorr…
|
NVD-CWE-Other
|
CVE-2007-1889
|
2017-07-29 10:31 |
2007-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299035
|
- |
|
wordpress
|
wordpress
|
xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users with the contributor role to bypass intended access restrictions and invoke the publish_posts functiona…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-1893
|
2017-07-29 10:31 |
2007-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299036
|
- |
|
aol
|
icq
instant_messenger
|
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .…
|
NVD-CWE-Other
|
CVE-2007-1904
|
2017-07-29 10:31 |
2007-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299037
|
- |
|
pineapple_technologies
|
quizshock
|
Cross-site scripting (XSS) vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special character…
|
CWE-79
Cross-site Scripting
|
CVE-2007-1905
|
2017-07-29 10:31 |
2007-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299038
|
- |
|
tru-zone
|
nukeet
|
The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the account owner, which allows remote authenticat…
|
NVD-CWE-Other
|
CVE-2007-1925
|
2017-07-29 10:31 |
2007-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299039
|
- |
|
ichitaro
|
ichitaro
|
Ichitaro 2005 through 2007, and possibly related products, allows remote attackers to have an unknown impact via unspecified vectors in a document distributed through e-mail or a web site, possibly d…
|
CWE-79
CWE-119
Cross-site Scripting
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-1938
|
2017-07-29 10:31 |
2007-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299040
|
- |
|
ibm
|
tivoli_business_service_manager
|
IBM Tivoli Business Service Manager (TBSM) 4.1 before Interim Fix 1 logs passwords in plaintext, which allows local users to obtain sensitive information by reading (1) ncisetup.db or (2) msi.log.
|
NVD-CWE-Other
|
CVE-2007-1940
|
2017-07-29 10:31 |
2007-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
