|
278211
|
- |
|
php
|
php
|
Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and earlier, when display_errors is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. N…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5814
|
2018-10-31 01:26 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278212
|
- |
|
php
|
php
|
The dba_replace function in PHP 5.2.6 and 4.x allows context-dependent attackers to cause a denial of service (file truncation) via a key with the NULL byte. NOTE: this might only be a vulnerability…
|
CWE-20
Improper Input Validation
|
CVE-2008-7068
|
2018-10-31 01:26 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278213
|
- |
|
microsoft
|
office
works
|
Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, 2004 for Mac, and Works Suite 2004, 2005, and 2006 does not properly handle data in a certain array, which allows user-assisted r…
|
CWE-20
Improper Input Validation
|
CVE-2007-0035
|
2018-10-31 01:26 |
2007-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278214
|
- |
|
adobe
|
flash_player
|
Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file with a negative Scene Count value, whi…
|
CWE-189
Numeric Errors
|
CVE-2007-0071
|
2018-10-31 01:26 |
2008-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278215
|
- |
|
sun
|
jdk
jre
sdk
|
Buffer overflow in Sun JDK and Java Runtime Environment (JRE) 5.0 Update 9 and earlier, SDK and JRE 1.4.2_12 and earlier, and SDK and JRE 1.3.1_18 and earlier allows applets to gain privileges via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-0243
|
2018-10-31 01:26 |
2007-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278216
|
- |
|
php
canonical
|
php
ubuntu_linux
|
The WDDX deserializer in the wddx extension in PHP 5 before 5.2.1 and PHP 4 before 4.4.5 does not properly initialize the key_length variable for a numerical key, which allows context-dependent attac…
|
CWE-20
Improper Input Validation
|
CVE-2007-0908
|
2018-10-31 01:26 |
2007-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278217
|
- |
|
vmware
|
esx_server
esx
|
Double free vulnerability in VMware ESX Server 3.0.0 and 3.0.1 allows attackers to cause a denial of service (crash), obtain sensitive information, or possibly execute arbitrary code via unspecified …
|
CWE-189
Numeric Errors
|
CVE-2007-1270
|
2018-10-31 01:26 |
2007-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278218
|
- |
|
vmware
|
esx
|
Buffer overflow in VMware ESX Server 3.0.0 and 3.0.1 might allow attackers to gain privileges or cause a denial of service (application crash) via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-1271
|
2018-10-31 01:26 |
2007-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278219
|
- |
|
microsoft
|
excel
excel_viewer
office
|
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and Office Excel 2007 does not properly validate version information, which allows user-assisted remote attackers to execute arbitrary code …
|
NVD-CWE-Other
|
CVE-2007-1756
|
2018-10-31 01:26 |
2007-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278220
|
- |
|
linux
|
linux_kernel
|
The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting …
|
NVD-CWE-Other
|
CVE-2007-2453
|
2018-10-31 01:26 |
2007-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
