Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-03 | CVE-2007-2489 | Remote Heap Overflow vulnerability in LiveData Protocol Server WSDL Files Heap-based buffer overflow in LiveData Protocol Server 5.00.045, and other versions before update 500062 (5.00.062), allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted request for a WSDL file that causes a negative length to be used in a strncpy call. | 10.0 |
2007-05-03 | CVE-2007-2486 | Directory Traversal vulnerability in Motobit 1.3/1.5 Directory traversal vulnerability in download.asp in Motobit 1.3 and 1.5 (aka PStruh-CZ) allows remote attackers to read arbitrary files via a .. | 5.0 |
2007-05-03 | CVE-2007-2485 | Remote File Include vulnerability in Wordpress Myflash Plugin PHP remote file inclusion vulnerability in myflash-button.php in the myflash 1.00 and earlier plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter. | 7.5 |
2007-05-03 | CVE-2007-2484 | Remote Security vulnerability in Wp-Table PHP remote file inclusion vulnerability in js/wptable-button.php in the wp-Table 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter. network ruben-boelinger | 6.8 |
2007-05-03 | CVE-2007-2483 | File-Upload vulnerability in Wp-Table Directory traversal vulnerability in js/wptable-button.php in the wp-Table 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the wpPATH parameter. network ruben-boelinger | 6.8 |
2007-05-03 | CVE-2007-2482 | Remote File Include vulnerability in WordPress Plugins Directory traversal vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. network ruben-boelinger | 6.8 |
2007-05-03 | CVE-2007-2481 | Remote File Include vulnerability in WordPress Plugins PHP remote file inclusion vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter. network ruben-boelinger | 6.8 |
2007-05-03 | CVE-2007-2479 | Information Exposure vulnerability in Cerulean Studios Trillian 3.1 Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be sent to the attacker. | 7.1 |
2007-05-03 | CVE-2007-2478 | IRC Module UTF-8 vulnerability in Cerulean Studios Trillian Multiple heap-based buffer overflows in the IRC component in Cerulean Studios Trillian Pro before 3.1.5.1 allow remote attackers to corrupt memory and possibly execute arbitrary code via (1) a URL with a long UTF-8 string, which triggers the overflow when the user highlights it, or (2) a font HTML tag with a face attribute containing a long UTF-8 string. | 9.3 |
2007-05-02 | CVE-2007-2476 | Privilege Escalation vulnerability in Novell Securelogin 6 Unspecified vulnerability in Novell SecureLogin (NSL) 6 SP1 before 6.0.106 has unknown impact and remote attack vectors, related to Active Directory (AD) password changes. | 10.0 |