|
298641
|
- |
|
updir
|
updir.net
|
Cross-site scripting (XSS) vulnerability in updir.php in UPDIR.NET before 2.04 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5955
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298642
|
- |
|
ibm
|
informix_dynamic_server
|
Directory traversal vulnerability in IBM Informix Dynamic Server (IDS) before 10.00.xC7W1 allows local users to gain privileges by referencing modified NLS message files through directory traversal s…
|
CWE-22
Path Traversal
|
CVE-2007-5956
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298643
|
- |
|
ibm
|
informix_dynamic_server
|
Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 10.00.TC3TL and 11.10.TB4TL on Windows allows attackers to cause a denial of service (application crash) via unspecified SQ_ONASSIST req…
|
NVD-CWE-noinfo
|
CVE-2007-5957
|
2017-07-29 10:33 |
2007-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298644
|
- |
|
kde
|
kde
|
Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumption) via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2007-5963
|
2017-07-29 10:33 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298645
|
- |
|
phpmyadmin
|
phpmyadmin
|
SQL injection vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to execute arbitrary SQL commands via the db parameter.
|
CWE-89
SQL Injection
|
CVE-2007-5976
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298646
|
- |
|
phpmyadmin
|
phpmyadmin
|
Cross-site scripting (XSS) vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to inject arbitrary web script or HTML via a …
|
CWE-79
Cross-site Scripting
|
CVE-2007-5977
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298647
|
- |
|
lantronix
|
scs3200
|
Lantronix SCS3200 does not properly handle public-key requests, which allows remote attackers to cause a denial of service (unresponsive device) via unspecified keyscan requests. NOTE: the provenanc…
|
NVD-CWE-Other
|
CVE-2007-5981
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298648
|
- |
|
bti-tracker
|
bti-tracker
|
Multiple cross-site scripting (XSS) vulnerabilities in BtiTracker before 1.4.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) account.php, (2) moresmiles…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5985
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298649
|
- |
|
btiteam
|
btitracker
|
SQL injection vulnerability in include/functions.php in BtiTracker before 1.4.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2007-5986
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298650
|
- |
|
bti-tracker
|
bti-tracker
|
details.php in BtiTracker before 1.4.5, when torrent viewing is disabled for guests, allows remote attackers to bypass protection mechanisms via a direct request, as demonstrated by (1) reading the d…
|
CWE-287
CWE-264
Improper Authentication
Permissions, Privileges, and Access Controls
|
CVE-2007-5987
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
