|
293951
|
- |
|
auracms
|
auracms
|
Multiple SQL injection vulnerabilities in AuraCMS 1.5rc allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) hal.php, (2) cetak.php, (3) lihat.php, (4) pesan.php, and …
|
CWE-89
SQL Injection
|
CVE-2007-4804
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293952
|
- |
|
fuzzylime
|
fuzzylime
|
Directory traversal vulnerability in getgalldata.php in fuzzylime (cms) 3.0 and earlier allows remote attackers to include arbitrary local files via a .. (dot dot) in the p parameter.
|
CWE-22
Path Traversal
|
CVE-2007-4805
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293953
|
- |
|
focus_sis
|
focus_sis
|
PHP remote file inclusion vulnerability in modules/Discipline/CategoryBreakdownTime.php in Focus/SIS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the FocusPath parameter.
|
CWE-94
Code Injection
|
CVE-2007-4806
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293954
|
- |
|
focus_sis
|
focus_sis
|
Multiple PHP remote file inclusion vulnerabilities in Focus/SIS 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the staticpath parameter to (1) modules/Discipline/CategoryBreakd…
|
CWE-94
Code Injection
|
CVE-2007-4807
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293955
|
- |
|
tlm_cms
|
tlm_cms
|
Multiple SQL injection vulnerabilities in TLM CMS 3.2 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to news.php in a lirenews action, (2) the idnews parameter to g…
|
CWE-89
SQL Injection
|
CVE-2007-4808
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293956
|
- |
|
online_fantasy_football_league
|
offl
|
Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League (OFFL) 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOC_ROOT parameter to (1) lib/f…
|
CWE-94
Code Injection
|
CVE-2007-4809
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293957
|
- |
|
baofeng
|
storm
|
Multiple buffer overflows in the BaoFeng2 storm ActiveX control in Mps.dll allow remote attackers to have an unknown impact via a long (1) URL, (2) backImage, or (3) titleImage property value; (4) a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4816
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293958
|
- |
|
detodas
|
restaurante_component_for_joomla
|
Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a fi…
|
CWE-94
Code Injection
|
CVE-2007-4817
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293959
|
- |
|
sisfo_kampus
|
sisfo_kampus
|
Absolute path traversal vulnerability in blanko.preview.php in Sisfo Kampus 2006 allows remote attackers to read arbitrary local files, and possibly execute local PHP scripts, via the nmf parameter.
|
CWE-22
Path Traversal
|
CVE-2007-4820
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293960
|
- |
|
edraw
|
office_viewer_component
|
Buffer overflow in a certain ActiveX control in officeviewer.ocx 5.2.218.1 in EDraw Office Viewer Component 5.2 allows remote attackers to execute arbitrary code via a long first argument to the Http…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4821
|
2017-09-29 10:29 |
2007-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
