|
294001
|
- |
|
david_harris
|
mercury_32
|
Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote authenticated users to execute arbitrary code via a long argument in a SEARCH ON command. NOTE: this issue might overlap with CV…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5018
|
2017-09-29 10:29 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294002
|
- |
|
sun
|
java_web_start
jre
sdk
|
Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote attackers to have an unknown impact via a long argument to the dnsResolve (isInstalle…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5019
|
2017-09-29 10:29 |
2007-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294003
|
- |
|
airdefense
|
airsensor
|
Multiple buffer overflows in the AirDefense Airsensor M520 with firmware 4.3.1.1 and 4.4.1.4 allow remote authenticated users to cause a denial of service (HTTPS service outage) via a crafted query s…
|
CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error')
Improper Input Validation
|
CVE-2007-5036
|
2017-09-29 10:29 |
2007-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294004
|
- |
|
izicontents
|
izicontents
|
Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in (1) the admin_home parameter to modules/poll/poll_summ…
|
CWE-94
Code Injection
|
CVE-2007-5053
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294005
|
- |
|
izicontents
|
izicontents
|
Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the gsLanguage parameter to (1) search/search.php…
|
CWE-94
Code Injection
|
CVE-2007-5054
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294006
|
- |
|
izicontents
|
izicontents
|
Multiple directory traversal vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the admin_home parameter to…
|
CWE-22
Path Traversal
|
CVE-2007-5055
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294007
|
- |
|
adodb_lite
cmsmadesimple
journalness
open-realty
pacercms
sapid
|
adodb_lite
cms_made_simple
journalness
open-realty
pacercms
sapid_cmf
|
Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remo…
|
CWE-94
Code Injection
|
CVE-2007-5056
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294008
|
- |
|
clansphere
|
clansphere
|
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter to index.php in a banners action.
|
CWE-89
SQL Injection
|
CVE-2007-5061
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294009
|
- |
|
adam_scheinberg
|
flip
|
account.php in Adam Scheinberg Flip 3.0 and earlier allows remote attackers to create administrative accounts via the un parameter in a register action.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5062
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294010
|
- |
|
adam_scheinberg
|
flip
|
Adam Scheinberg Flip 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing login credentials vi…
|
CWE-255
Credentials Management
|
CVE-2007-5063
|
2017-09-29 10:29 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
