|
285231
|
- |
|
icu-project
|
international_components_for_unicode
|
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers…
|
CWE-399
Resource Management Errors
|
CVE-2007-4770
|
2018-10-16 06:37 |
2008-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285232
|
- |
|
icu-project
|
international_components_for_unicode
|
Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of…
|
CWE-399
Resource Management Errors
|
CVE-2007-4771
|
2018-10-16 06:37 |
2008-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285233
|
- |
|
olate
|
olatedownload
|
Multiple cross-site scripting (XSS) vulnerabilities in Olate Download (od) 3.4.2 allow remote attackers to inject arbitrary web script or HTML via (1) the PHP_SELF variable in modules/core/uim.php an…
|
CWE-352
Origin Validation Error
|
CVE-2007-4541
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285234
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla 2.17.1 through 2.20.4, 2.22.x before 2.22.3, and 3.x before 3.0.1 allows remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2007-4543
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285235
|
- |
|
wordpress
|
wordpress_mu
|
Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the weblog_id parameter (Use…
|
CWE-352
Origin Validation Error
|
CVE-2007-4544
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285236
|
- |
|
x-diesel
|
unreal_commander
|
Multiple directory traversal vulnerabilities in Unreal Commander 0.92 build 565 and 573 allow user-assisted remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a filename wi…
|
CWE-22
Path Traversal
|
CVE-2007-4545
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285237
|
- |
|
x-diesel
|
unreal_commander
|
Unreal Commander 0.92 build 565 and 573 lists the filenames from the Central Directory of a ZIP archive, but extracts to local filenames corresponding to names in Local File Header fields in this arc…
|
NVD-CWE-Other
|
CVE-2007-4546
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285238
|
- |
|
x-diesel
|
unreal_commander
|
Unreal Commander 0.92 build 565 and 573 writes portions of heap memory into local files when extracting from an archive with malformed size information in a file header, which might allow user-assist…
|
NVD-CWE-noinfo
|
CVE-2007-4547
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285239
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
Cross-site scripting (XSS) vulnerability in tiki-remind_password.php in Tikiwiki (aka Tiki CMS/Groupware) 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the username paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4554
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285240
|
- |
|
clam_anti-virus
|
clamav
|
clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the…
|
CWE-78
OS Command
|
CVE-2007-4560
|
2018-10-16 06:36 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
