|
285201
|
- |
|
www.toms-seiten.at
|
toms_gaestebuch
|
Multiple cross-site scripting (XSS) vulnerabilities in Toms Gaestebuch 1.00 allow remote attackers to inject arbitrary web script or HTML via the (1) homepage, (2) mail, and (3) name parameters in a …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4711
|
2018-10-16 06:36 |
2007-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285202
|
- |
|
weblogicnet
|
weblogicnet
|
Multiple PHP remote file inclusion vulnerabilities in Weblogicnet allow remote attackers to execute arbitrary PHP code via a URL in the files_dir parameter in (1) es_desp.php, (2) es_custom_menu.php,…
|
CWE-94
Code Injection
|
CVE-2007-4715
|
2018-10-16 06:36 |
2007-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285203
|
- |
|
2wire
|
1701hg_router
2071_router
|
2wire 1701HG and 2071 Gateway routers, with 5.29.51 and possibly 3.17.5 software, have a blank password by default.
|
NVD-CWE-Other
|
CVE-2007-4388
|
2018-10-16 06:35 |
2007-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285204
|
- |
|
2wire
|
1701hg_router
1800hw_router
2071_router
|
Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG, 1800HW, and 2071 Gateway routers, with 3.17.5, 3.7.1, and 5.29.51 software, allows remote attackers to create DNS mappings as…
|
NVD-CWE-Other
|
CVE-2007-4389
|
2018-10-16 06:35 |
2007-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285205
|
- |
|
bluecat_networks
|
adonis
|
The Command Line Interface (CLI), aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying opera…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4390
|
2018-10-16 06:35 |
2007-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285206
|
- |
|
nullsoft
|
winamp
|
Winamp 5.35 allows remote attackers to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself.
|
NVD-CWE-Other
|
CVE-2007-4392
|
2018-10-16 06:35 |
2007-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285207
|
- |
|
irssi
|
irssi
|
Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts f…
|
NVD-CWE-Other
|
CVE-2007-4396
|
2018-10-16 06:35 |
2007-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285208
|
- |
|
irssi
kristof_korwisi
mikachu
ricardo_mesquita
simon
tuomas_jormola
|
irssi
ixmmsa
l33t_xmms_music_showing_script
mpg123
ogg123
xmms2
xmmsinfo
|
Multiple CRLF injection vulnerabilities in (1) xmms-thing 1.0, (2) XMMS Remote Control Script 1.07, (3) Disrok 1.0, (4) a2x 0.0.1, (5) Another xmms-info script 1.0, (6) XChat-XMMS 0.8.1, and other un…
|
NVD-CWE-Other
|
CVE-2007-4397
|
2018-10-16 06:35 |
2007-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285209
|
- |
|
irssi
|
irssi
|
CRLF injection vulnerability in the xmms.bx 1.0 script for BitchX allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
|
NVD-CWE-Other
|
CVE-2007-4399
|
2018-10-16 06:35 |
2007-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285210
|
- |
|
konversation
|
konversation
|
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 …
|
NVD-CWE-Other
|
CVE-2007-4400
|
2018-10-16 06:35 |
2007-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
