Max CVSS | 7.8 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-0266 | 7.5 |
SQL injection vulnerability in boxx/ShowAppendix.asp in Ezboxx Portal System Beta 0.7.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the iid parameter.
|
16-10-2018 - 16:32 | 16-01-2007 - 23:28 | |
CVE-2007-0251 | 7.8 |
Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive informa
|
16-10-2018 - 16:32 | 16-01-2007 - 23:28 | |
CVE-2007-0252 | 7.5 |
Unspecified vulnerability in easy-content filemanager allows remote attackers to upload or modify arbitrary files via unspecified vectors.
|
16-10-2018 - 16:32 | 16-01-2007 - 23:28 | |
CVE-2007-0265 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in Ezboxx Portal System Beta 0.7.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the pic parameter to custom/piczoom.asp, (2) the nocatname parameter to boxx/user
|
16-10-2018 - 16:32 | 16-01-2007 - 23:28 | |
CVE-2007-0250 | 5.0 |
index.php in Nwom topsites 3.0 allows remote attackers to obtain potentially sensitive information via a ' (quote) character in the o parameter, which forces a SQL error.
|
16-10-2018 - 16:32 | 16-01-2007 - 23:28 | |
CVE-2007-0249 | 6.8 |
Cross-site scripting (XSS) vulnerability in index.php in Nwom topsites 3.0 allows remote attackers to inject arbitrary web script or HTML via the o parameter.
|
16-10-2018 - 16:32 | 16-01-2007 - 23:28 | |
CVE-2007-0227 | 5.0 |
slocate 3.1 does not properly manage database entries that specify names of files in protected directories, which allows local users to obtain the names of private files. NOTE: another researcher reports that the issue is not present in slocate 2.7.
|
16-10-2018 - 16:31 | 13-01-2007 - 02:28 | |
CVE-2003-1022 | 7.5 |
Directory traversal vulnerability in fsp before 2.81.b18 allows remote users to access files outside the FSP root directory.
|
10-10-2017 - 01:30 | 20-01-2004 - 05:00 | |
CVE-2007-5901 | 6.9 |
Use-after-free vulnerability in the gss_indicate_mechs function in lib/gssapi/mechglue/g_initialize.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code. Information from Apple
|
29-09-2017 - 01:29 | 06-12-2007 - 02:46 | |
CVE-2007-1491 | 5.2 |
Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allows connections from external interfaces via port 8009, which exposes it to attacks from outside parties.
|
05-09-2008 - 21:20 | 16-03-2007 - 22:19 |