|
285081
|
- |
|
pidgin
|
pidgin
|
libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) vi…
|
NVD-CWE-Other
|
CVE-2007-4996
|
2018-10-16 06:39 |
2007-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285082
|
- |
|
pidgin
|
pidgin
|
libpurple in Pidgin 2.1.0 through 2.2.1, when using HTML logging, allows remote attackers to cause a denial of service (NULL dereference and application crash) via a message that contains invalid HTM…
|
CWE-20
Improper Input Validation
|
CVE-2007-4999
|
2018-10-16 06:39 |
2007-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285083
|
- |
|
joomla
|
joomla
|
SQL injection vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to the archive section. NOTE: …
|
CWE-89
SQL Injection
|
CVE-2007-4777
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285084
|
- |
|
joomla
|
joomla
|
Cross-site scripting (XSS) vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably related to the archiv…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4779
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285085
|
- |
|
joomla
|
joomla
|
Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to obtain sensitive information (the full path) via unspecified vectors, probably involving direct requests to certain PHP scripts in tmpl…
|
CWE-20
Improper Input Validation
|
CVE-2007-4780
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285086
|
- |
|
php
|
php
|
PHP before 5.2.3 allows context-dependent attackers to cause a denial of service (application crash) via (1) a long string in the pattern parameter to the glob function; or (2) a long string in the s…
|
CWE-94
Code Injection
|
CVE-2007-4782
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285087
|
- |
|
php
|
php
|
The iconv_substr function in PHP 5.2.4 and earlier allows context-dependent attackers to cause (1) a denial of service (application crash) via a long string in the charset parameter, probably also re…
|
CWE-20
Improper Input Validation
|
CVE-2007-4783
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285088
|
- |
|
php
|
php
|
The setlocale function in PHP before 5.2.4 allows context-dependent attackers to cause a denial of service (application crash) via a long string in the locale parameter. NOTE: this might not be a vu…
|
CWE-20
Improper Input Validation
|
CVE-2007-4784
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285089
|
- |
|
sony
|
micro_vault_fingerprint_access_software
|
Sony Micro Vault Fingerprint Access Software, as distributed with Sony Micro Vault USM-F USB flash drives, installs a driver that hides a directory under %WINDIR%, which might allow remote attackers …
|
NVD-CWE-Other
|
CVE-2007-4785
|
2018-10-16 06:38 |
2007-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285090
|
- |
|
netjuke
|
netjuke
|
Multiple SQL injection vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to execute arbitrary SQL commands via (1) the ge_id parameter in a list.artists action to explore.php or (2) the id pa…
|
CWE-89
SQL Injection
|
CVE-2007-4810
|
2018-10-16 06:38 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
