| Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-1976 | 7.5 |
PHP remote file inclusion vulnerability in index.php in the Virii Info 1.10 and earlier module for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the xoopsConfig[root_path] parameter. NOTE: the issue has been disputed by a r
|
11-04-2024 - 00:42 | 12-04-2007 - 00:19 | |
| CVE-2009-0989 | 5.5 |
Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, and 10.1.3.3.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2
|
28-07-2021 - 18:42 | 15-04-2009 - 10:30 | |
| CVE-2007-1008 | 2.6 |
Apple iTunes 7.0.2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted XML list of radio stations, which results in memory corruption. NOTE: iTunes retrieves the XML document from a static URL, which
|
16-10-2018 - 16:36 | 20-02-2007 - 01:28 | |
| CVE-2007-5218 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Don Barnes DRBGuestbook 1.1.13 allows remote attackers to inject arbitrary web script or HTML via the action parameter.
|
15-10-2018 - 21:41 | 05-10-2007 - 00:17 | |
| CVE-2007-5221 | 6.8 |
PHP remote file inclusion vulnerability in mail/childwindow.inc.php in Poppawid 2.7 allows remote attackers to execute arbitrary PHP code via a URL in the form parameter.
|
29-09-2017 - 01:29 | 05-10-2007 - 00:17 | |
| CVE-2004-2328 | 5.0 |
Clearswift MAILsweeper for SMTP before 4.3_13 allows remote attackers to cause a denial of service (infinite loop) via an e-mail with a crafted RAR archive attached.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2007-5046 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Webmail interface for IceWarp Merak Mail Server before 9.0.0 allows remote attackers to inject arbitrary JavaScript via a javascript: URI in an attribute of an element in an email message body, as demon
|
08-03-2011 - 02:59 | 24-09-2007 - 00:17 | |
| CVE-2007-2014 | 7.5 |
PHP remote file inclusion vulnerability in include/blocks/week_events.php in MyNews 4.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the myNewsConf[path][sys][index] parameter, a different vector than CVE-2007-0633.
|
08-03-2011 - 02:53 | 12-04-2007 - 19:19 | |
| CVE-2007-5227 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in messaging/course/composeMessage.jsp in BlackBoard Learning System 6.3.1.593 and earlier in BlackBoard Academic Suite allow remote attackers to inject arbitrary web script or HTML via the (1) subj
|
30-08-2010 - 04:00 | 05-10-2007 - 23:17 | |
| CVE-2007-5547 | 4.3 |
Cross-site scripting (XSS) vulnerability in Cisco IOS allows remote attackers to inject arbitrary web script or HTML, and execute IOS commands, via unspecified vectors, aka PSIRT-2022590358. NOTE: as of 20071016, the only disclosure is a vague pre-a
|
15-11-2008 - 07:01 | 18-10-2007 - 20:17 | |
| CVE-2007-5280 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in messages.jsp in AppFuse before 2.0 Final allow remote attackers to inject arbitrary web script or HTML via unspecified input that is recorded in (1) success or (2) error messages.
|
15-11-2008 - 07:00 | 09-10-2007 - 00:17 |