|
293311
|
- |
|
izicontents
|
izicontents
|
Multiple directory traversal vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the admin_home parameter to…
|
CWE-22
Path Traversal
|
CVE-2007-5055
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293312
|
- |
|
adodb_lite
cmsmadesimple
journalness
open-realty
pacercms
sapid
|
adodb_lite
cms_made_simple
journalness
open-realty
pacercms
sapid_cmf
|
Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remo…
|
CWE-94
Code Injection
|
CVE-2007-5056
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293313
|
- |
|
clansphere
|
clansphere
|
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter to index.php in a banners action.
|
CWE-89
SQL Injection
|
CVE-2007-5061
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293314
|
- |
|
adam_scheinberg
|
flip
|
account.php in Adam Scheinberg Flip 3.0 and earlier allows remote attackers to create administrative accounts via the un parameter in a register action.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5062
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293315
|
- |
|
adam_scheinberg
|
flip
|
Adam Scheinberg Flip 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing login credentials vi…
|
CWE-255
Credentials Management
|
CVE-2007-5063
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293316
|
- |
|
joomla
webmaster-tips
|
joomla
flash_slide_show
|
PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mo…
|
CWE-94
Code Injection
|
CVE-2007-5065
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293317
|
- |
|
imatix
|
xitami
|
Multiple buffer overflows in iMatix Xitami Web Server 2.5c2 allow remote attackers to execute arbitrary code via a long If-Modified-Since header to (1) xigui32.exe or (2) xitami.exe.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5067
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293318
|
- |
|
phpfullannu
|
phpfullannu
|
SQL injection vulnerability in index.php in phpFullAnnu (PFA) 6.0 allows remote attackers to execute arbitrary SQL commands via the mod parameter.
|
CWE-89
SQL Injection
|
CVE-2007-5068
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293319
|
- |
|
quiksoft
|
easymail_messageprinter_object
|
Heap-based buffer overflow in the EasyMailMessagePrinter ActiveX control in emprint.DLL 6.0.1.0 in the Quiksoft EasyMail MessagePrinter Object allows remote attackers to execute arbitrary code via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5070
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293320
|
- |
|
realnetworks
|
realone_player
realplayer
realplayer_enterprise
|
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5081
|
2017-09-29 10:29 |
2007-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
