4nuxd
_
Experience
Certifications
About
Writeups
News
Tools
Resources
Database
[Connect]
Vulnerability_Archives
CVE_
ARCHIVES
.DB
ARCHIVE_CHRONOLOGY.INDEX
STATUS: ONLINE
YEAR:
[2007]
Risk_Filter:
CRITICAL
HIGH
MEDIUM
LOW
Records:
6,596
Mode:
SECURE_QUERY
CVE-2007-6602
HIGH
SQL injection vulnerability in app/models/identity.php in NoseRub 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the
Discovered
Dec 31, 2007
CVE-2007-6603
MEDIUM
Hot or Not Clone has insufficient access control for producing and reading database backups, which allows remote attackers to obtain the administrator
Discovered
Dec 31, 2007
CVE-2007-6604
MEDIUM
Multiple directory traversal vulnerabilities in index.php in XCMS 1.82 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) i
Discovered
Dec 31, 2007
CVE-2007-6605
MEDIUM
Buffer overflow in a certain ActiveX control in SkyFexClient.ocx 1.0.2.77 in SkyFex Client 1.0 allows remote attackers to execute arbitrary code via l
Discovered
Dec 31, 2007
CVE-2007-6606
MEDIUM
OpenBiblio 0.5.2-pre4 and earlier allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the php
Discovered
Dec 31, 2007
CVE-2007-6607
MEDIUM
OpenBiblio 0.5.2-pre4 and earlier allows remote attackers to obtain sensitive information via a direct request for (1) shared/footer.php, (2) circ/mbr
Discovered
Dec 31, 2007
CVE-2007-6608
MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in OpenBiblio 0.5.2-pre4 and earlier allow remote attackers to inject arbitrary web script or HTML
Discovered
Dec 31, 2007
CVE-2007-6609
MEDIUM
Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote
Discovered
Dec 31, 2007
CVE-2007-6337
HIGH
Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impact and remote attack vect
Discovered
Dec 31, 2007
CVE-2007-6595
LOW
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclama
Discovered
Dec 31, 2007
CVE-2007-6596
MEDIUM
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
Discovered
Dec 31, 2007
CVE-2007-6597
MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in IPortalX before Build 033 allow remote attackers to inject arbitrary web script or HTML via the
Discovered
Dec 31, 2007
CVE-2007-6565
HIGH
Multiple SQL injection vulnerabilities in Blakord Portal 1.3.A Beta and earlier allow remote attackers to execute arbitrary SQL commands via the id pa
Discovered
Dec 28, 2007
CVE-2007-6566
HIGH
SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands v
Discovered
Dec 28, 2007
CVE-2007-6567
MEDIUM
Directory traversal vulnerability in index.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to include and execute arbit
Discovered
Dec 28, 2007
CVE-2007-6568
HIGH
PHP remote file inclusion vulnerability in config.inc.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitr
Discovered
Dec 28, 2007
CVE-2007-6569
MEDIUM
Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 allows remote attack
Discovered
Dec 28, 2007
CVE-2007-6570
MEDIUM
Cross-site scripting (XSS) vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x before 4.0.6 and 3.x before 3.
Discovered
Dec 28, 2007
CVE-2007-6571
MEDIUM
Cross-site scripting (XSS) vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote attackers to inject arbitrary we
Discovered
Dec 28, 2007
CVE-2007-6572
MEDIUM
Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote attackers to inject arbitr
Discovered
Dec 28, 2007
1
2
3
...
Jump_To_Sector:
GO
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002
2001
2000
1999
1998
1997
1996
1995
1994
1993
1992
1991
1990
1989
1988
2026 CVE Archives
2025 CVE Archives
2024 CVE Archives
2023 CVE Archives
2022 CVE Archives
2021 CVE Archives
2020 CVE Archives
2019 CVE Archives
2018 CVE Archives
2017 CVE Archives
2016 CVE Archives
2015 CVE Archives
2014 CVE Archives
2013 CVE Archives
2012 CVE Archives
2011 CVE Archives
2010 CVE Archives
2009 CVE Archives
2008 CVE Archives
2007 CVE Archives
2006 CVE Archives
2005 CVE Archives
2004 CVE Archives
2003 CVE Archives
2002 CVE Archives
2001 CVE Archives
2000 CVE Archives
1999 CVE Archives
1998 CVE Archives
1997 CVE Archives
1996 CVE Archives
1995 CVE Archives
1994 CVE Archives
1993 CVE Archives
1992 CVE Archives
1991 CVE Archives
1990 CVE Archives
1989 CVE Archives
1988 CVE Archives
CVE Database - Vulnerability Explorer