Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-03-02 | CVE-2007-1199 | Information Disclosure vulnerability in Adobe Acrobat/Adobe Reader Adobe Reader and Acrobat Trial allow remote attackers to read arbitrary files via a file:// URI in a PDF document, as demonstrated with <</URI(file:///C:/)/S/URI>>, a different issue than CVE-2007-0045. network adobe | 4.3 |
2007-03-02 | CVE-2007-1198 | Cross-Site Scripting vulnerability in Taskfreak Cross-site scripting (XSS) vulnerability in TaskFreak! before 0.5.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a variant of CVE-2007-0982. network taskfreak | 4.3 |
2007-03-02 | CVE-2007-1192 | Information Disclosure vulnerability in Hyperbook Guestbook 1.30 Thomas R. | 5.0 |
2007-03-02 | CVE-2007-1190 | Remote Code Execution vulnerability in EmbeddedWB Web Browser ActiveX Control Unspecified vulnerability in the EmbeddedWB Web Browser ActiveX control allows remote attackers to execute arbitrary code via unspecified vectors. network bsalsa | 6.8 |
2007-03-02 | CVE-2007-1187 | Remote vulnerability in Webapp.Org Webapp WebAPP before 0.9.9.5 allows remote authenticated users, without admin privileges, to obtain sensitive information via (1) the Forum Archive feature and (2) Recent Searches. | 5.5 |
2007-03-02 | CVE-2007-1186 | Remote vulnerability in Webapp.Org Webapp WebAPP before 0.9.9.5 does not "censor" the Latest Member real name, which has unknown impact. | 5.0 |
2007-03-02 | CVE-2007-1185 | Remote vulnerability in Webapp.Org Webapp The (1) Search, (2) Edit Profile, (3) Recommend, and (4) User Approval forms in WebAPP before 0.9.9.5 use hidden inputs, which has unknown impact and remote attack vectors. | 5.0 |
2007-03-02 | CVE-2007-1184 | Configuration vulnerability in Web-App.Org Webapp The default configuration of WebAPP before 0.9.9.5 has a CAPTCHA setting of "no," which makes it easier for automated programs to submit false data. | 5.0 |
2007-03-02 | CVE-2007-1182 | Remote vulnerability in Webapp.Org Webapp WebAPP before 0.9.9.5 allows remote Guest users to edit a Guest profile, which has unknown impact. | 6.4 |
2007-03-02 | CVE-2007-1181 | Remote vulnerability in Webapp.Org Webapp WebAPP before 0.9.9.5 passes (1) Unused Informations and (2) the username through Edit Profile forms, which has unknown impact and attack vectors. | 5.0 |