|
299761
|
- |
|
wikepage
|
opus
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in (a) Wikepage Opus 13 2007.2 and (b) TipiWiki 2 allow remote attackers to inject arbitrary web script or HTML via the (1) PageConten…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2007-5295
|
2017-07-29 10:33 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299762
|
- |
|
livio_siri
|
dblist
|
Multiple cross-site scripting (XSS) vulnerabilities in dblisttest.asp in dbList 8.1 allow remote attackers to inject arbitrary web script or HTML via the (1) db, (2) pagesize, (3) sort, (4) strKeyWor…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5296
|
2017-07-29 10:33 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299763
|
- |
|
minki
|
minki
|
Cross-site scripting (XSS) vulnerability in index.php in Minki 1.30 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5297
|
2017-07-29 10:33 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299764
|
- |
|
typolight
|
typolight_webcms
|
Unspecified vulnerability in preview.php in TYPOlight webCMS 2.4.6 allows remote attackers to download arbitrary files via the src parameter. NOTE: the provenance of this information is unknown; the…
|
CWE-20
Improper Input Validation
|
CVE-2007-5318
|
2017-07-29 10:33 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299765
|
- |
|
pegasus_imaging
|
imagxpress
|
Multiple absolute path traversal vulnerabilities in Pegasus Imaging ImagXpress 8.0 allow remote attackers to (1) delete arbitrary files via the CacheFile attribute in the ThumbnailXpres.1 ActiveX con…
|
CWE-22
Path Traversal
|
CVE-2007-5320
|
2017-07-29 10:33 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299766
|
- |
|
emc
|
replistor
|
The RepliStor Server Service in EMC Replistor 6.1.3 allows remote attackers to execute arbitrary code via a size value that causes RepliStor to create a smaller buffer than expected, which triggers a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5323
|
2017-07-29 10:33 |
2007-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299767
|
- |
|
ag-solutions
joomla
mambo
|
mosmedia_lite
joomla
mambo
|
Multiple PHP remote file inclusion vulnerabilities in the Avant-Garde Solutions MOSMedia Lite (com_mosmedia) 4.5.1 component for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code…
|
CWE-94
Code Injection
|
CVE-2007-5362
|
2017-07-29 10:33 |
2007-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299768
|
- |
|
joomla
webmaster-tips
|
joomla
panoramic_picture_viewer
|
PHP remote file inclusion vulnerability in admin.panoramic.php in the Panoramic Picture Viewer (com_panoramic) mambot (plugin) 1.0 for Joomla! allows remote attackers to execute arbitrary PHP code vi…
|
CWE-94
Code Injection
|
CVE-2007-5363
|
2017-07-29 10:33 |
2007-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299769
|
- |
|
fujitsu
|
interstage_application_server
interstage_apworks
interstage_studio
|
The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information…
|
CWE-22
Path Traversal
|
CVE-2007-5366
|
2017-07-29 10:33 |
2007-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299770
|
- |
|
ldapscripts
|
ldapscripts
|
ldapscripts 1.4 and 1.7 sends a password as a command line argument when calling some LDAP programs, which might allow local users to read the password by listing the process and its arguments, as de…
|
CWE-310
Cryptographic Issues
|
CVE-2007-5373
|
2017-07-29 10:33 |
2007-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
