Primary Vendor -- Product | Description | | CVSS Score | Source & Patch Info | ACD Systems -- ACDSee Photo Manager
| Integer overflow in ACDSee Photo Manager 9.0 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via large width image sizes in a crafted BMP image, as demonstrated by w3intof.bmp and w4intof.bmp. | | 8.0 | CVE-2007-1943 BUGTRAQ OTHER-REF BID FRSIRT SECUNIA
| AlstraSoft -- Video Share Enterprise
| siteadmin/useredit.php in AlstraSoft Video Share Enterprise does not check authentication, which allows remote attackers to obtain or modify user information via a direct request. | | 7.0 | CVE-2007-2017 OTHER-REF BID FRSIRT SECUNIA
| ArchiveXpert -- ArchiveXpert
| Multiple directory traversal vulnerabilities in ArchiveXpert 2.02 build 80 allow remote attackers to create files in arbitrary directories via a .. (dot dot) in a (1) .gz, (2) .jar, (3) .rar, (4) .tar.gz, (5) .zip, or (6) .tar file. | | 7.0 | CVE-2007-1954 OTHER-REF SECUNIA
| CodeBreak -- CodeBreak
| PHP remote file inclusion vulnerability in codebreak.php in CodeBreak allows remote attackers to execute arbitrary PHP code via a URL in the process_method parameter. | | 7.0 | CVE-2007-1996 BUGTRAQ
| Cyboards -- Cyboards PHP Lite
| PHP remote file inclusion vulnerability in include/default_header.php in Cyboards PHP Lite 1.21 allows remote attackers to execute arbitrary PHP code via a URL in the script_path parameter, a different vector than CVE-2006-2871. | | 7.0 | CVE-2007-1983 MILW0RM VIM BID XF
| Daniel Naber -- LanguageTool
| Cross-site scripting (XSS) vulnerability in the embedded webserver in Daniel Naber LanguageTool before 0.8.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message. | | 7.0 | CVE-2007-1939 OTHER-REF
| DropAFew -- DropAFew
| Multiple SQL injection vulnerabilities in DropAFew before 0.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in the delete action in (a) search.php or (b) search-pda.php, or the (2) calories parameter in a save action in editlogcal.php. | | 7.0 | CVE-2007-1363 OTHER-REF OTHER-REF BID SECUNIA
| FastStone -- Image Viewer
| Integer overflow in FastStone Image Viewer 2.9 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via a crafted BMP image, as demonstrated by wh3intof.bmp and wh4intof.bmp. | | 8.0 | CVE-2007-1942 BUGTRAQ OTHER-REF BID SECUNIA
| Gazi Okul Sitesi -- Gazi Okul Sitesi
| SQL injection vulnerability in fotokategori.asp in Gazi Okul Sitesi 2007 allows remote attackers to execute arbitrary SQL commands via the query string. | | 7.0 | CVE-2007-1971 BUGTRAQ BID
| HIOX INDIA -- Guest Book
| Direct static code injection vulnerability in HIOX Guest Book (HGB) 4.0 allows remote attackers to inject arbitrary PHP code via the Email field, which results in code execution through a direct request to gb.php. | | 7.0 | CVE-2007-1998 MILW0RM
| holaCMS -- holaCMS
| Cross-site scripting (XSS) vulnerability in index_cms.php in holaCMS 1.4.10 allows remote attackers to inject arbitrary web script or HTML via the acuparam parameter. | | 7.0 | CVE-2007-1977 OTHER-REF SECUNIA
| HP -- Portable File System
| Unspecified vulnerability in the Portable File System (PFS) in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to gain privileges via unspecified vectors. | | 7.0 | CVE-2007-1993 HP BID FRSIRT SECTRACK SECUNIA
| IBM -- WebSphere Application Server
| Unspecified vulnerability in the Servlet Engine/Web Container in IBM WebSphere Application Server (WAS) before 6.1.0.7 has unknown impact and attack vectors. | | 7.0 | CVE-2007-1945 OTHER-REF AIXAPAR FRSIRT XF
| InoutMailingListManager -- InoutMailingListManager
| Multiple SQL injection vulnerabilities in InoutMailingListManager 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to changename.php and other unspecified vectors. | | 7.0 | CVE-2007-2004 MILW0RM
| Internet Pictures Corporation -- iPIX Image Well
| Multiple buffer overflows in the Internet Pictures Corporation iPIX Image Well ActiveX control (iPIX-ImageWell-ipix.dll) allow remote attackers to execute arbitrary code via unspecified vectors. | | 10.0 | CVE-2007-1687 CERT-VN
| IrfanView -- IrfanView
| Buffer overflow in IrfanView 3.99 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via the (1) xoffset or (2) yoffset RLE command, or (3) large non-RLE encoded blocks in a crafted BMP image, as demonstrated by rle8of3.bmp and rle8of4.bmp. | | 8.0 | CVE-2007-1948 BUGTRAQ OTHER-REF FRSIRT
| LedgerSMB -- LedgerSMB DWS Systems Inc. -- SQL-Ledger
| (1) LedgerSMB and (2) DWS Systems SQL-Ledger implement access control lists by changing the set of URLs linked from menus, which allows remote attackers to access restricted functionality via direct requests. | | 7.0 | CVE-2007-1923 BUGTRAQ BID
| Mambo -- Taskhopper Component Joomla! -- Taskhopper Component
| Multiple PHP remote file inclusion vulnerabilities in the Taskhopper 1.1 component for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) contact_type.php, (2) itemstatus_type.php, (3) projectstatus_type.php, (4) request_type.php, (5) responses_type.php, (6) timelog_type.php, or (7) urgency_type.php in inc/. | | 7.0 | CVE-2007-2005 MILW0RM
| MamboXChange -- com_zoom
| Multiple PHP remote file inclusion vulnerabilities in the com_zoom 2.5 beta 2 and earlier module for Mambo allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) EXIF_Makernote.php or (2) EXIF.php in classes/iptc/. | | 7.0 | CVE-2007-1992 MILW0RM BID
| Microsoft -- Content Management Server
| Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2 does not properly handle certain characters in a crafted HTTP GET request, which allows remote attackers to execute arbitrary code, aka the "CMS Memory Corruption Vulnerability." | | 10.0 | CVE-2007-0938 MS
| Microsoft -- Windows XP
| Unspecified vulnerability in the Universal Plug and Play (UPnP) service in Microsoft Windows XP SP2 allows remote attackers on the same subnet to execute arbitrary code via crafted HTTP requests that trigger memory corruption. | | 8.0 | CVE-2007-1204 MS
| Microsoft -- Windows 2000 Microsoft -- Windows Server 2003 Microsoft -- Windows XP
| Unspecified vulnerability in Microsoft Agent (msagent\agentsvr.exe) in Windows 2000 SP4, XP SP2, and Server 2003, 2003 SP1, and 2003 SP2 allows remote attackers to execute arbitrary code via crafted URLs, which result in memory corruption. | | 10.0 | CVE-2007-1205 MS OTHER-REF
| Microsoft -- Windows XP
| Integer overflow in Windows Explorer in Microsoft Windows XP SP1 might allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large width dimension in a crafted BMP image, as demonstrated by w4intof.bmp. | | 10.0 | CVE-2007-1946 BUGTRAQ OTHER-REF BID
| MyBB -- MyBB MyBulletinBoard -- MyBulletinBoard
| SQL injection vulnerability in the create_session function in class_session.php in MyBB (aka MyBulletinBoard) 1.2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header, as utilized by index.php, a related issue to CVE-2006-3775. | | 7.0 | CVE-2007-1963 BUGTRAQ MILW0RM OTHER-REF OTHER-REF FRSIRT SECUNIA
| MyNews -- MyNews
| PHP remote file inclusion vulnerability in include/blocks/week_events.php in MyNews 4.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the myNewsConf[path][sys][index] parameter, a different vector than CVE-2007-0633. | | 7.0 | CVE-2007-2014 OTHER-REF FRSIRT
| nazarkin.name -- Weatimages
| PHP remote file inclusion vulnerability in index.php in Weatimages 1.7.1 and earlier, when weatimages.ini is missing, allows remote attackers to execute arbitrary PHP code via a URL in the ini[langpack] parameter. | | 7.0 | CVE-2007-1999 MILW0RM
| Nick Jones -- Topliste Module
| SQL injection vulnerability in index.php in the Topliste 1.0 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the cid parameter. | | 7.0 | CVE-2007-1980 MILW0RM BID FRSIRT XF
| NullSoft -- Winamp
| LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote attackers to execute arbitrary code via a crafted .MAT (MATLAB sound) file that contains a value that is used as an offset, which triggers memory corruption. | | 8.0 | CVE-2007-1921 BUGTRAQ OTHER-REF BID FRSIRT
| NullSoft -- Winamp
| The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory corruption. | | 10.0 | CVE-2007-1922 BUGTRAQ BUGTRAQ OTHER-REF BID FRSIRT
| Onelook -- oboShop
| Session fixation vulnerability in onelook obo Shop allows remote attackers to hijack web sessions by setting a PHPSESSID cookie. | | 7.0 | CVE-2007-1951 BUGTRAQ OTHER-REF
| Onelook -- onebyone CMS
| Session fixation vulnerability in onelook onebyone CMS allows remote attackers to hijack web sessions by setting a PHPSESSID cookie. | | 7.0 | CVE-2007-1952 BUGTRAQ OTHER-REF
| Onelook -- courts online
| Session fixation vulnerability in onelook courts on-line allows remote attackers to hijack web sessions by setting a PHPSESSID cookie. | | 7.0 | CVE-2007-1953 BUGTRAQ OTHER-REF
| PHP-Fusion -- Arcade Module
| SQL injection vulnerability in index.php in the Arcade 1.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view_game_list action. | | 7.0 | CVE-2007-1978 MILW0RM FRSIRT XF
| phpBB -- Mutant
| PHP remote file inclusion vulnerability in mutant_functions.php in the Mutant 0.9.2 portal for phpBB 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | | 7.0 | CVE-2007-1961 MILW0RM BID
| PHPEcho CMS -- PHPEcho CMS
| ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in PHPEcho CMS 2.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) _plugin_file parameter to smarty/internals/core.load_pulgins.php or the (2) root_path parameter to index.php. NOTE: CVE disputes (1) because the inclusion occurs within a function that is not called during a direct request. CVE disputes (2) because root_path is defined in config.php before use. | | 7.0 | CVE-2007-1987 BUGTRAQ
| phpexplorator -- phpexplorator
| Multiple PHP remote file inclusion vulnerabilities in phpexplorator.php in phpexplorator 2.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) cmd or (2) lang_path parameter. | | 7.0 | CVE-2007-1985 BUGTRAQ
| Pineapple Technologies -- Lore
| Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lang_path parameter to third_party/phpmailer/class.phpmailer.php or the (2) get_plugin_file_path parameter to third_party/smarty/libs/plugins/function.html_checkboxes.php. NOTE: the affected files might be from other software packages, so this might not be a vulnerability in Lore itself. NOTE: (1) might be the same issue as CVE-2006-5734.4. | | 7.0 | CVE-2007-2021 BUGTRAQ
| pL-PHP -- pL-PHP
| Multiple SQL injection vulnerabilities in login.php in pL-PHP beta 0.9 allow remote attackers to execute arbitrary SQL commands via the (1) login or (2) pass parameter. | | 7.0 | CVE-2007-2006 MILW0RM
| pL-PHP -- pL-PHP
| admin.php in pL-PHP beta 0.9 allows remote attackers to bypass authentication by setting the is_admin parameter to 1. | | 7.0 | CVE-2007-2007 MILW0RM
| pL-PHP -- pL-PHP
| Directory traversal vulnerability in admin.php in pL-PHP beta 0.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter. | | 7.0 | CVE-2007-2008 MILW0RM
| Raphaël Limbach -- Crea-Book
| Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) pseudo or (2) passe parameter. | | 7.0 | CVE-2007-2000 MILW0RM
| Roxio -- CinePlayer
| Stack-based buffer overflow in SonicDVDDashVRNav.dll in Roxio CinePlayer 3.2 allows remote attackers to execute arbitrary code via unspecified properties and methods in the SonicDVDDashVRNav.dll ActiveX control. | | 10.0 | CVE-2007-1559 OTHER-REF FRSIRT SECUNIA
| Ryan Haudenschilt -- Battle.Net Clan Script
| SQL injection vulnerability in login.php in Ryan Haudenschilt Battle.net Clan Script for PHP 1.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) pass parameter. | | 7.0 | CVE-2007-1909 MILW0RM BID
| Sam Crew -- MyBlog
| PHP remote file inclusion vulnerability in games.php in Sam Crew MyBlog, possibly 1.0 through 1.6, allows remote attackers to execute arbitrary PHP code via a URL in the id parameter, a different vector than CVE-2007-1968. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-1990 FRSIRT
| SAP -- RFC Library
| Buffer overflow in the RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended. | | 7.0 | CVE-2007-1915 BUGTRAQ OTHER-REF BID FRSIRT SECUNIA XF
| SAP -- RFC Library
| Buffer overflow in the RFC_START_GUI function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended. | | 10.0 | CVE-2007-1916 BUGTRAQ OTHER-REF BID FRSIRT SECUNIA XF
| SAP -- RFC Library
| Buffer overflow in the SYSTEM_CREATE_INSTANCE function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended. | | 10.0 | CVE-2007-1917 BUGTRAQ OTHER-REF BID FRSIRT SECUNIA XF
| Scar4U -- ScarNews
| Directory traversal vulnerability in scarnews.inc.php in ScarNews 1.2.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the sn_admin_dir parameter. | | 7.0 | CVE-2007-1932 MILW0RM FRSIRT
| SignKorea -- SKCommAX ActiveX Control
| Multiple stack-based buffer overflows in the SignKorea SKCrypAX ActiveX control module 5.4.1.2 allow remote attackers to execute arbitrary code via a long string in unspecified arguments to the (1) DownloadCert, (2) DecryptFileByKey, and (3) EncryptFileByKey functions, a different module and vectors than CVE-2007-1722. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 10.0 | CVE-2007-1955 SECUNIA
| Smarty -- Smarty
| ** DISPUTED ** PHP remote file inclusion vulnerability in unit_test/test_cases.php in Smarty 2.6.1 allows remote attackers to execute arbitrary PHP code via a URL in the SMARTY_DIR parameter. NOTE: this issue is disputed by CVE and a third party because SMARTY_DIR is a constant. | | 7.0 | CVE-2006-7193 BUGTRAQ BUGTRAQ XF
| SmodBIP -- SmodBIP
| SQL injection vulnerability in index.php in the aktualnosci module in SmodBIP 1.06 and earlier allows remote attackers to execute arbitrary SQL commands via the zoom parameter. | | 7.0 | CVE-2007-1920 MILW0RM BID XF
| SmodCMS -- SmodCMS
| SQL injection vulnerability in index.php in the slownik module in SmodCMS 2.10 and earlier allows remote attackers to execute arbitrary SQL commands via the ssid parameter. | | 7.0 | CVE-2007-1931 MILW0RM FRSIRT XF
| Tomex -- phpGalleryScript
| PHP remote file inclusion vulnerability in init.gallery.php in phpGalleryScript 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the include_class parameter. | | 7.0 | CVE-2007-2019 BUGTRAQ VIM
| UBBCentral -- UBB.threads
| SQL injection vulnerability in ubbthreads.php in Groupee UBB.threads 6.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the C parameter. | | 7.0 | CVE-2007-1956 BUGTRAQ
| WebBlizzard -- Content Management System
| Session fixation vulnerability in WebBlizzard CMS allows remote attackers to hijack web sessions by setting a PHPSESSID cookie. | | 7.0 | CVE-2007-1949 BUGTRAQ OTHER-REF
| WitShare -- WitShare
| Directory traversal vulnerability in index.php in witshare 0.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the menu parameter. | | 7.0 | CVE-2007-1928 BUGTRAQ BID
| XodaGallery -- XodaGallery
| ** DISPUTED ** Unspecified vulnerability in administration.php in xodagallery allows remote attackers to execute arbitrary code via the cmd parameter. NOTE: CVE disputes this vulnerability because administration.php does not use the cmd parameter for inclusion. | | 7.0 | CVE-2007-2020 BUGTRAQ VIM XF
| Xoops -- Rha7 Downloads Module
| SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the lid parameter. | | 7.0 | CVE-2007-1960 MILW0RM BID
| Xoops -- WF-Snippets
| SQL injection vulnerability in index.php in the WF-Snippets 1.02 and earlier module for XOOPS allows remote attackers to execute arbitrary SQL commands via the c parameter in a cat op action. | | 7.0 | CVE-2007-1962 MILW0RM XF
| Xoops -- Happy Linux XFsection WF-Sections -- WF-Sections Xoops -- ZMagazine
| SQL injection vulnerability in the getArticle function in class/wfsarticle.php in WF-Section (aka WF-Sections) 1.0.1, as used in Xoops modules such as (1) Zmagazine 1.0, (2) Happy Linux XFsection 1.07 and earlier, and possibly other modules, allows remote attackers to execute arbitrary SQL commands via the articleid parameter to print.php. | | 7.0 | CVE-2007-1974 MILW0RM MILW0RM MILW0RM OTHER-REF OTHER-REF OTHER-REF VIM BID BID BID FRSIRT FRSIRT FRSIRT XF XF XF
| Xoops -- Xoops Virii Info Module
| ** DISPUTED ** PHP remote file inclusion vulnerability in index.php in the Virii Info 1.10 and earlier module for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the xoopsConfig[root_path] parameter. NOTE: the issue has been disputed by a reliable third party, stating that the application's checkSuperglobals function defends against the attack. | | 7.0 | CVE-2007-1976 MILW0RM VIM VIM FRSIRT XF
| Xoops -- Xoops PopnupBlog
| SQL injection vulnerability in index.php in the PopnupBlog 2.52 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the postid parameter, possibly involving the get_blogid_from_postid function in class/PopnupBlogUtils.php. NOTE: later versions such as 3.03 and 3.05 might also be affected. | | 7.0 | CVE-2007-1979 MILW0RM BID FRSIRT SECUNIA
|