|
298741
|
- |
|
phpraider
|
phpraider
|
Multiple SQL injection vulnerabilities in index.php in phpRaider 1.0.0 rc8 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) type parameter.
|
NVD-CWE-Other
|
CVE-2007-3415
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298742
|
- |
|
web-app.org
web_app.net
|
webapp
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the administration of (1) polls, (2) profiles, (3) IP bans, and (4) forums in (a) web-app.org WebAPP 0.8 through 0.9.9.6; and (b) web-app…
|
CWE-352
Origin Validation Error
|
CVE-2007-3416
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298743
|
- |
|
trend_micro
|
officescan
|
Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonst…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-3454
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298744
|
- |
|
trend_micro
|
officescan
|
cgiChkMasterPwd.exe before 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to bypass the password requirement and gain access to the Management Console via an empty …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-3455
|
2017-07-29 10:32 |
2007-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298745
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file.
|
CWE-352
Origin Validation Error
|
CVE-2007-3457
|
2017-07-29 10:32 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298746
|
- |
|
rim
|
blackberry_enterprise_server
|
Research in Motion BlackBerry Enterprise Server 4.0 through 4.1 has a default configuration that permits installation of arbitrary third-party applications on BlackBerry devices, which might facilita…
|
NVD-CWE-Other
|
CVE-2007-3483
|
2017-07-29 10:32 |
2007-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298747
|
- |
|
htmlpurifier
|
htmlpurifier
|
Cross-site scripting (XSS) vulnerability in smoketests/configForm.php in HTML Purifier before 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "…
|
NVD-CWE-Other
|
CVE-2007-3498
|
2017-07-29 10:32 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298748
|
- |
|
directadmin
|
directadmin
|
Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vecto…
|
NVD-CWE-Other
|
CVE-2007-3501
|
2017-07-29 10:32 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298749
|
- |
|
kaspersky_lab
|
kaspersky_anti-spam
|
Unspecified vulnerability in the web-based product configuration system in Kaspersky Anti-Spam before 3.0 MP1 allows remote attackers to obtain access to certain directories.
|
NVD-CWE-Other
|
CVE-2007-3502
|
2017-07-29 10:32 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298750
|
- |
|
symantec
|
veritas_backup_exec
|
Heap-based buffer overflow in the RPC subsystem in Symantec Backup Exec for Windows Servers 10.0, 10d, and 11d allows remote attackers to cause a denial of service (process exit) and possibly execute…
|
NVD-CWE-Other
|
CVE-2007-3509
|
2017-07-29 10:32 |
2007-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
