• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

NVD-CWE-Other

CVE-2007-3571

February 26, 2023 by

The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote attackers to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be modified, which may reveal the server’s internal IP address.

CVE-2007-3573

February 26, 2023 by

Multiple SQL injection vulnerabilities in akocomment allow remote attackers to execute arbitrary SQL commands via the (1) acparentid or (2) acitemid parameter to an unspecified component, different vectors than CVE-2006-1421.

CVE-2007-3575

February 26, 2023 by

SQL injection vulnerability in includes/functions in FreeDomain.co.nr Clone allows remote attackers to execute arbitrary SQL commands via the logindomain parameter to members.php.

CVE-2007-3576

February 26, 2023 by

** DISPUTED ** Microsoft Internet Explorer 6 executes web script from URIs of arbitrary scheme names ending with the “script” character sequence, using the (1) vbscript: handler for scheme names with 7 through 9 characters, and the (2) javascript: handler for scheme names with 10 or more characters, which might allow remote attackers to bypass certain XSS protection schemes. NOTE: other researchers dispute the significance of this issue, stating “this only works when typed in the address bar.”

CVE-2007-3577

February 26, 2023 by

PHPIDS before 20070703 does not properly handle use of the substr method in (1) document.location.search and (2) document.referrer; (3) certain use of document.location.hash; (4) certain “window[eval” and similar expressions; (5) certain Function expressions; (6) certain ‘=’ expressions, as demonstrated by a ‘whatever=”something”‘ sequence; and (7) certain “with” expressions, which allows remote attackers to inject arbitrary web script.

CVE-2007-3578

February 26, 2023 by

PHPIDS before 20070703 does not properly handle (1) arithmetic expressions and (2) unclosed comments, which allows remote attackers to inject arbitrary web script.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 153
  • Go to page 154
  • Go to page 155
  • Go to page 156
  • Go to page 157
  • Interim pages omitted …
  • Go to page 940
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE