Primary Vendor -- Product | Description | | CVSS Score | Source & Patch Info | Advanced Poll -- Advanced Poll
| admin/index.php in Advanced Poll 2.0.0 through 2.0.5-dev allows remote attackers to bypass authentication and gain administrator privileges by obtaining a valid session identifier and setting the uid parameter to 1. | | 7.0 | CVE-2007-0845 OTHER-REF BID
| AgerMenu -- AgerMenu
| PHP remote file inclusion vulnerability in examples/inc/top.inc.php in AgerMenu 0.03 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the rootdir parameter. | | 7.0 | CVE-2007-0837 OTHER-REF VIM VIM FRSIRT
| Alibaba -- Alipay ActiveX control
| Heap-based buffer overflow in the Alibaba Alipay ActiveX control allows remote attackers to execute arbitrary code via a JavaScript function that invokes the Remove method with an invalid index argument. | | 7.0 | CVE-2007-0827 OTHER-REF
| Atsphp -- Atsphp
| ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Atsphp 5.0.1 allow remote attackers to execute arbitrary PHP code via a URL in the CONF[path] parameter to (1) index.php, (2) sources/usercp.php, or (3) sources/admin.php. NOTE: Another researcher has disputed this vulnerability, noting that CONF[path] is defined before use in index.php, that CONF[path] inclusion cannot occur through a direct request to other affected files, and that usercp.php is a typo of user_cp.php. | | 7.0 | CVE-2007-0831 BUGTRAQ BUGTRAQ
| Barron McCann -- Install Barron McCann -- X-Kryptor Driver Barron McCann -- X-Kryptor Secure Client Barron McCann -- Xgntr
| Unspecified vulnerability in Barron McCann X-Kryptor Driver BMS1446HRR, Xgntr BMS1351, and Install BMS1472 in X-Kryptor Secure Client allows local users to gain privileges via unknown vectors. | | 7.0 | CVE-2007-0436 OTHER-REF OTHER-REF
| Blue Coat Systems -- WinProxy
| Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT request, which triggers heap corruption. | | 7.0 | CVE-2007-0796 IDEFENSE FRSIRT
| Bluevirus-design -- SMA-DB
| PHP remote file inclusion vulnerability in theme/settings.php in bluevirus-design SMA-DB 0.3.9 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pfad_z parameter. | | 7.0 | CVE-2007-0797 OTHER-REF BID
| BtitTracker -- BtitTracker
| SQL injection in torrents.php in BtitTracker 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) by and (2) order parameters. NOTE: it is not clear whether this issue is exploitable. | | 7.0 | CVE-2006-6972 OTHER-REF VIM BID FRSIRT SECUNIA
| Cedric -- CLAIRE PortailPhp
| Multiple PHP remote file inclusion vulnerabilities in Cedric CLAIRE PortailPhp 2 allow remote attackers to execute arbitrary PHP code via a URL in the chemin parameter to (1) mod_news/index.php, (2) mod_news/goodies.php, or (3) mod_search/index.php. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-0820 BID
| CentiPaid -- CentiPaid
| PHP remote file inclusion vulnerability in centipaid_class.php in CentiPaid 1.4.2 and earlier allows remote attackers to execute arbitrary code via a URL in the absolute_path parameter. | | 7.0 | CVE-2006-6976 OTHER-REF VIM XF
| Comodo -- Comodo Firewall Pro
| cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1) NtConnectPort and (2) NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments. | | 7.0 | CVE-2007-0708 BUGTRAQ OTHER-REF BID SECTRACK XF
| Comodo -- Comodo Firewall Pro
| cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) 2.4.16.174 and earlier does not validate arguments that originate in user mode for the (1) NtCreateSection, (2) NtOpenProcess, (3) NtOpenSection, (4) NtOpenThread, and (5) NtSetValueKey hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments. | | 7.0 | CVE-2007-0709 BUGTRAQ OTHER-REF BID SECTRACK XF
| Darrens $5 Script Archive -- FlashChat
| Cross-site scripting (XSS) vulnerability in index.php in flashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via a channel title (aka room name) that is not properly handled by the "who's online" feature. | | 7.0 | CVE-2007-0807 BUGTRAQ
| Darrens $5 Script Archive -- FlashChat
| Cross-site scripting (XSS) vulnerability in FlashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via the user name field when the user joins a chat room, a different vulnerability than CVE-2007-0807. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-0834 SECUNIA
| dB Masters Multimedia -- Curium CMS
| SQL injection vulnerability in news.php in dB Masters Curium CMS 1.03 and earlier allows remote attackers to execute arbitrary SQL commands via the c_id parameter. | | 7.0 | CVE-2007-0765 OTHER-REF BID XF
| Epistemon -- Epistemon
| PHP remote file inclusion vulnerability in inc/common.inc.php in Epistemon 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc_path parameter. | | 7.0 | CVE-2007-0701 Milw0rm VIM BID FRSIRT
| EQdkp -- EQdkp
| EQdkp 1.3.1 and earlier authenticates administrative requests by verifying that the HTTP Referer header specifies an admin/ URL, which allows remote attackers to read or modify account names and passwords via a spoofed Referer. | | 10.0 | CVE-2007-0760 OTHER-REF BID
| F3Site -- F3Site
| Cross-site scripting (XSS) vulnerability in the news comment functionality in F3Site 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the Autor field. | | 7.0 | CVE-2007-0763 OTHER-REF BID
| FCKeditor -- FCKeditor
| Cross-site scripting (XSS) vulnerability in the "Basic Toolbar Selection" in FCKEditor allows remote attackers to execute arbitrary JavaScript via the javascript: URI in the (1) href or (2) onmouseover attribute of the A HTML tag. | | 7.0 | CVE-2006-6978 BUGTRAQ OTHER-REF XF
| Fenrir -- Darksky RSS bar
| Cross-zone scripting vulnerability in Darksky RSS bar for Internet Explorer before 1.29, RSS bar for Sleipnir before 1.29, and RSS bar for unDonut before 1.29 allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information. | | 7.0 | CVE-2007-0706 OTHER-REF OTHER-REF OTHER-REF FRSIRT
| Fenrir & Co -- Portable Sleipnir Fenrir & Co -- Sleipnir
| Cross-zone scripting vulnerability in Sleipnir 2.49 and earlier, and Portable Sleipnir 2.45 and earlier, allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information. | | 7.0 | CVE-2007-0705 OTHER-REF OTHER-REF OTHER-REF FRSIRT SECUNIA
| Flipsource -- Flip
| PHP remote file inclusion vulnerability in previewtheme.php in Flipsource Flip 2.01-final 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the inc_path parameter. | | 7.0 | CVE-2007-0785 OTHER-REF BID FRSIRT
| Free LAN In(tra|ter)net Portal -- Free LAN In(tra|ter)net Portal
| Multiple SQL injection vulnerabilities in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some sources mention the escape_sqlData, implode_sql, and implode_sqlIn functions, but these are protections chemes, not the vulnerable functions. | | 7.0 | CVE-2007-0695 OTHER-REF VIM FRSIRT XF
| Geeklog -- Geeklog
| PHP remote file inclusion vulnerability in MVCnPHP/BaseView.php in GeekLog 2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the glConf[path_libraries] parameter. NOTE: this might be a vulnerability in MVCnPHP rather than a vulnerability in GeekLog. | | 7.0 | CVE-2007-0810 OTHER-REF
| GGCMS -- GGCMS
| Directory traversal vulnerability in admin/subpages.php in GGCMS 1.1.0 RC1 and earlier allows remote attackers to inject arbitrary PHP code into arbitrary files via ".." sequences in the subpageName parameter, as demonstrated by injecting PHP code into a template file. | | 7.0 | CVE-2007-0804 OTHER-REF BID FRSIRT XF
| GlobalMegaCorp -- Dvddb
| PHP remote file inclusion vulnerability in inc/common.php in GlobalMegaCorp dvddb 0.6 allows remote attackers to execute arbitrary PHP code via a URL in the config parameter. | | 7.0 | CVE-2007-0793 BUGTRAQ
| GlobalMegaCorp -- Dvddb
| SQL injection vulnerability in inc/common.php in GlobalMegaCorp dvddb 0.6 allows remote attackers to execute arbitrary SQL commands via the user parameter. | | 7.0 | CVE-2007-0794 BUGTRAQ
| Headstart Solutions -- DeskPRO
| Headstart Solutions DeskPRO does not require authentication for certain files and directories associated with administrative activities, which allows remote attackers to (1) reinstall the application via a direct request for install/index.php; (2) delete the database via a do=delete_database QUERY_STRING to a renamed copy of install/index.php; or access the administration system, after guessing a filename, via a direct request for a file in (3) admin/ or (4) tech/. | | 7.0 | CVE-2006-6973 OTHER-REF
| Headstart Solutions -- DeskPRO
| Headstart Solutions DeskPRO stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) list files in the includes/ directory; obtain the SQL username and password via a direct request for (2) config.php and (3) config.php.bak in includes/; read files in (4) email/, (5) admin/graphs/, (6) includes/javascript/, and (7) certain other includes/ directories via direct requests; and download SQL database data via direct requests for (8) data.sql, (9) install.sql, (10) settings.sql, and possibly other files in install/v2data/. | | 7.0 | CVE-2006-6974 OTHER-REF
| HP -- Network Node Manager Remote Console
| HP Network Node Manager (NNM) Remote Console 7.50 assigns Everyone Full Control permission for the %PROGRAMFILES%\HP OpenView directory tree, which allows local users to gain privileges via a Trojan horse executable file or ActiveX component, or a modified bin\ovtrcsvc.exe for the HP Open View Shared Trace Service. | | 7.0 | CVE-2007-0819 FULLDISC OTHER-REF
| Hunkaray Duyuru -- Scripti
| SQL injection vulnerability in oku.asp in Hunkaray Duyuru Scripti allows remote attackers to execute arbitrary SQL commands via the id parameter. | | 7.0 | CVE-2007-0688 OTHER-REF
| Kisisel Site 2007 -- Kisisel Site forum.asp
| SQL injection vulnerability in forum.asp in Kisisel Site 2007 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. | | 7.0 | CVE-2007-0826 OTHER-REF
| Les News -- Les News
| Les News 2.2 allows remote attackers to bypass authentication and gain administrative access via a direct request for adminews/index_fr.php3, and possibly the adminews index documents for other localizations. | | 7.0 | CVE-2007-0806 BUGTRAQ OTHER-REF
| LightRO -- Light RO CMS
| PHP remote file inclusion vulnerability in inhalt.php in LightRO CMS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the dateien[news] parameter. | | 7.0 | CVE-2007-0824 OTHER-REF BID
| Maian Recipe -- Maian Recipe
| PHP remote file inclusion vulnerability in classes/class_mail.inc.php in Maian Recipe 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_folder parameter. | | 7.0 | CVE-2007-0848 OTHER-REF VIM SECUNIA
| Mambo -- Mambo
| SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via the unspecified vectors in cancel edit functions, possibly related to the id parameter. | | 7.0 | CVE-2007-0789 OTHER-REF FRSIRT SECUNIA
| Miguel Nunes -- Call of Duty 2 DreamStats System
| PHP remote file inclusion vulnerability in index.php in Miguel Nunes Call of Duty 2 (CoD2) DreamStats System 4.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter. | | 7.0 | CVE-2007-0757 OTHER-REF VIM BID
| Mina Ajans -- Mina Ajans Script
| PHP remote file inclusion vulnerability in Mina Ajans Script allows remote attackers to execute arbitrary PHP code via a URL in the syf parameter to an unspecified PHP script. | | 7.0 | CVE-2007-0808 BUGTRAQ
| Mozilla -- Bugzilla
| The mod_perl initialization script in Bugzilla 2.23.3 does not set the Bugzilla Apache configuration to allow .htaccess permissions to override file permissions, which allows remote attackers to obtain the database username and password via a direct request for the localconfig file. | | 7.0 | CVE-2007-0792 BUGTRAQ OTHER-REF BID FRSIRT SECTRACK
| MySQLNewsEngine -- MySQLNewsEngine
| PHP remote file inclusion vulnerability in affichearticles.php3 in MySQLNewsEngine allows remote attackers to execute arbitrary PHP code via a URL in the newsenginedir parameter. | | 7.0 | CVE-2007-0828 BUGTRAQ BID
| Noname Media -- Photo Galerie Standard
| SQL injection vulnerability in view.php in Noname Media Photo Galerie Standard 1.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | | 7.0 | CVE-2007-0786 OTHER-REF BID FRSIRT
| Omegaboard -- Omegaboard
| PHP remote file inclusion vulnerability in includes/functions.php in Omegaboard 1.0beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | | 7.0 | CVE-2007-0683 Milw0rm OTHER-REF OTHER-REF
| Open Tibia Server CMS -- Open Tibia Server CMS
| SQL injection vulnerability in mod/PM/reply.php in Open Tibia Server CMS (OTSCMS) 2.1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to priv.php. | | 7.0 | CVE-2007-0847 OTHER-REF BID
| Phorum -- Phorum
| Cross-site scripting (XSS) vulnerability in the core in Phorum before 5.1.18 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | | 7.0 | CVE-2007-0767 OTHER-REF FRSIRT
| Phorum -- Phorum
| ** DISPUTED ** Cross-site scripting (XSS) vulnerability in register.php in Phorum 5.1.18 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the vendor disputes this vulnerability, stating that "The characters are escaped properly." | | 7.0 | CVE-2007-0769 BUGTRAQ BUGTRAQ OTHER-REF BID FRSIRT
| phpBB -- ezBoard Converter
| PHP remote file inclusion vulnerability in config.php in phpBB ezBoard converter (ezconvert) 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the ezconvert_dir parameter. | | 7.0 | CVE-2007-0761 OTHER-REF OTHER-REF VIM XF
| phpBB++ -- phpBB++
| PHP remote file inclusion vulnerability in includes/functions.php in phpBB++ Build 100 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | | 7.0 | CVE-2007-0762 OTHER-REF VIM
| phpEventMan -- phpEventMan
| Multiple PHP remote file inclusion vulnerabilities in phpEventMan 1.0.2 allow remote attackers to execute arbitrary PHP code via a URL in the level parameter to (1) Shared/controller/text.ctrl.php or (2) UserMan/controller/common.function.php. | | 7.0 | CVE-2007-0702 OTHER-REF VIM BID FRSIRT SECUNIA
| phpGraphy -- phpGraphy
| phpGraphy before 0.9.13a does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary PHP code by uploading a config.php file via the pictures[] parameter to index.php. NOTE: it could be argued that this vulnerability is due to a bug in the unset PHP command (CVE-2006-3017) and the proper fix should be in PHP; if so, then this should not be treated as a vulnerability in phpGraphy. | | 7.0 | CVE-2006-6966 OTHER-REF OTHER-REF OTHER-REF SECTRACK
| PHPProbid -- PHPProbid
| PHP remote file inclusion vulnerability in lang.php in PHPProbid 5.24 allows remote attackers to execute arbitrary PHP code via a URL in the SRC attribute of an HTML element in the lang parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-0758 BID
| Portail Web Php -- Portail Web Php
| PHP remote file inclusion vulnerability in includes/includes.php in Guernion Sylvain Portail Web Php (aka Gsylvain35 Portail Web, PwP) allows remote attackers to execute arbitrary PHP code via a URL in the site_path parameter. | | 7.0 | CVE-2007-0699 BUGTRAQ VIM BID FRSIRT
| Ptirhiikmods -- mod-CH
| PHP remote file inclusion vulnerability in includes/class_template.php in Categories hierarchy (aka CH or mod-CH) 2.1.2 in ptirhiikmods allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | | 7.0 | CVE-2007-0809 OTHER-REF
| RBL -- tPassword
| SQL injection vulnerability in login.asp for tPassword in the Raymond BERTHOU script collection (aka RBL - ASP) allows remote attackers to execute arbitrary SQL commands via the (1) User and (2) Password parameters. | | 7.0 | CVE-2007-0784 BUGTRAQ BUGTRAQ OTHER-REF VIM
| Remotesoft -- .NET Explorer
| Stack-based buffer overflow in Remotesoft .NET Explorer 2.0.1 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long line in a .cpp file. | | 8.0 | CVE-2007-0766 OTHER-REF BID
| SmartFTP -- SmartFTP
| Heap-based buffer overflow in SmartFTP 2.0.1002 allows remote FTP servers to execute arbitrary code via a large banner. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-0790 SECUNIA
| Somery -- Somery
| PHP remote file inclusion vulnerability in install.php in Somery 0.4.6 allows remote attackers to execute arbitrary PHP code via a URL in the skindir parameter, a different vector than CVE-2006-4669. NOTE: the documentation says to remove install.php after installation. | | 7.0 | CVE-2007-0704 OTHER-REF VIM
| SysCP Team -- SysCP
| scripts/cronscript.php in SysCP 1.2.15 and earlier includes and executes arbitrary PHP scripts that are referenced by the panel_cronscript table in the SysCP database, which allows attackers with database write privileges to execute arbitrary code by constructing a PHP file and adding its filename to this table. | | 7.0 | CVE-2007-0850 BUGTRAQ BID
| TechExcel Inc. -- DevTrack
| Cross-site scripting (XSS) vulnerability in DevTrack 6.x allows remote attackers to inject arbitrary web script or HTML via the "Keyword search" form field and unspecified other form fields that populate a public saved query. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-0852 SECUNIA
| TechExcel Inc. -- DevTrack
| SQL injection vulnerability in DevTrack 6.0.3 allows remote attackers to execute arbitrary SQL commands via the Username form field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | | 7.0 | CVE-2007-0853 SECUNIA
| Uapplication -- Ublog
| SQL injection vulnerability in badword.asp in Ublog Reload 1.0.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | | 7.0 | CVE-2007-0799 BUGTRAQ OTHER-REF BID
| Umberto Caldera -- EasyMoblog
| Multiple SQL injection vulnerabilities in EasyMoblog 0.5.1 allow remote attackers to execute arbitrary SQL commands via the (1) i or (2) post_id parameter to add_comment.php, which triggers an injection in libraries.inc.php; or (3) the i parameter to list_comments.php, which triggers an injection in libraries.inc.php. | | 7.0 | CVE-2007-0759 OTHER-REF OTHER-REF BID SECUNIA
| Valarsoft -- WebMatic
| Multiple PHP remote file inclusion vulnerabilities in index/index_album.php in Valarsoft WebMatic 2.6 allow remote attackers to execute arbitrary PHP code via a URL in the (1) P_LIB and (2) P_INDEX parameters. | | 7.0 | CVE-2007-0839 OTHER-REF VIM BID
| vbDrupal -- vbDrupal
| Multiple unspecified vulnerabilities in vbDrupal before 4.7.6.0 have unknown impact and remote attack vectors. NOTE: the vector related to Drupal is covered by CVE-2007-0626. These vulnerabilities might be associated with other CVE identifiers. | | 7.0 | CVE-2007-0841 OTHER-REF FRSIRT SECUNIA
| Wap -- Wap Portal Server
| Multiple PHP remote file inclusion vulnerabilities in Wap Portal Server 1.x allow remote attackers to execute arbitrary PHP code via a URL in the language parameter to (1) index.php and (2) admin/index.php. | | 7.0 | CVE-2007-0795 BUGTRAQ
| WebBuilder -- WebBuilder
| PHP remote file inclusion vulnerability in library/StageLoader.php in WebBuilder 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[core][module_path] parameter. | | 7.0 | CVE-2007-0703 OTHER-REF VIM FRSIRT
| Woltlab -- Burning Board Lite
| SQL injection vulnerability in pms.php in Woltlab Burning Board (wBB) Lite 1.0.2pl3e and earlier allows remote authenticated users to execute arbitrary SQL commands via the pmid[0] parameter. | | 7.0 | CVE-2007-0812 OTHER-REF
|