|
284991
|
- |
|
axis
|
2100_network_camera
|
Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 2100 Network Camera 2.02 with firmware 2.43 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5214
|
2018-10-16 06:41 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284992
|
- |
|
don_barnes
|
drbguestbook
|
Cross-site scripting (XSS) vulnerability in index.php in Don Barnes DRBGuestbook 1.1.13 allows remote attackers to inject arbitrary web script or HTML via the action parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5218
|
2018-10-16 06:41 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284993
|
- |
|
asp_product_catalog
|
asp_product_catalog
|
SQL injection vulnerability in catalog.asp in ASP Product Catalog allows remote attackers to execute arbitrary SQL commands via the cid parameter and possibly other parameters.
|
CWE-89
SQL Injection
|
CVE-2007-5220
|
2018-10-16 06:41 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284994
|
- |
|
alstrasoft
|
affiliate_network_pro
|
Multiple unspecified vulnerabilities in AlstraSoft Affiliate Network Pro allow remote attackers to include local files and have other unspecified impact, related to incorrect input validation or othe…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5223
|
2018-10-16 06:41 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284995
|
- |
|
jimmac
|
original_photo_gallery
|
inc/exif.inc.php in Original Photo Gallery 0.11.2 and earlier allows remote attackers to execute arbitrary programs via the exif_prog parameter, which is specified in an exec function call.
|
CWE-94
Code Injection
|
CVE-2007-5224
|
2018-10-16 06:41 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284996
|
- |
|
jimmac
|
original_photo_gallery
|
This vulnerability is addressed in the following product release:
http://jimmac.musichall.cz/zip/original/original-0.11.3.tar.bz2
|
CWE-94
Code Injection
|
CVE-2007-5224
|
2018-10-16 06:41 |
2007-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284997
|
- |
|
firebirdsql
|
firebird
|
Multiple stack-based buffer overflows in Firebird LI 1.5.3.4870 and 1.5.4.4910, and WI 1.5.3.4870 and 1.5.4.4910, allow remote attackers to execute arbitrary code via (1) a long service attach reques…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5245
|
2018-10-16 06:41 |
2007-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284998
|
- |
|
firebirdsql
|
firebird
|
Multiple stack-based buffer overflows in Firebird LI 2.0.0.12748 and 2.0.1.12855, and WI 2.0.0.12748 and 2.0.1.12855, allow remote attackers to execute arbitrary code via (1) a long attach request on…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5246
|
2018-10-16 06:41 |
2007-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284999
|
- |
|
monolith_productions
|
first_encounter_assault_recon
|
Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon (F.E.A.R.) 1.08 and earlier, when Punkbuster (PB) is enabled, allow remote attackers t…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2007-5247
|
2018-10-16 06:41 |
2007-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285000
|
- |
|
id_software
take2games
|
doom_3
quake_4
prey
|
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster (PB) is enabled, all…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2007-5248
|
2018-10-16 06:41 |
2007-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
