Packet Storm new exploits for July, 2007.
a17aa4778272538856a766813fdd1b6c661b0319fe91e563bd323e03f8b78f8f
WebEvent versions 2.61 through 4.03 suffer from cross site scripting vulnerabilities.
79cf5563d520b9d6fcaec1c7eb584bbb4eceb600821d9559b2ed928da0520d04
The BlueSkyCat ActiveX control suffers from a remote heap overflow vulnerability. Versions 8.1.2.0 and below of v2.ocx are affected.
c2cff68e757ac77cdbcf509659f36a4117f7c3ebe93b060cd54b2951c40818ff
InterNIC's whois look-up suffers from a cross site scripting vulnerability.
633a6cd0d19f7f71c9206620c86ff1a916f6484969e2bbf201ca8bfef706b488
wolioCMS suffers from a SQL injection and administrative bypass vulnerability.
76994001bb53177f84c17136934aa018600ec94b190431a7390cc844aa11d1c6
Joomla version 1.0.12 suffers from a SQL injection vulnerability.
75e5c84948819987bba630ec89b772f0cfdb342636f57b61ed9ede027582c45d
Dora Emlak Script version 1.0 suffers from an administrative bypass vulnerability.
4047997966d1b0e5e341c6d3a3eb210f599cbf3e3061b4719eb277c1aaff2925
phpVoter version 0.6 suffers from a remote file inclusion vulnerability.
891a216a198bea7234e4c6503b996afacf3261cc3a42fb9d85d9d048f7adf21c
Phorm version 3.0 suffers from a remote file upload vulnerability.
7f19c0ce66f7430f5cf648b101e53bc7c38e271a4df03ceca5644211925b1523
Madoa Poll version 1.1 suffers from a remote file inclusion vulnerability.
6f21e22499ab922e6efab18b48f0374f27e6910f8ad19ba1f291ff50d1ab6e9a
phpWebFileManager version 0.5 suffers from a remote file inclusion vulnerability.
bb0122786b4a6b5d59265313cd7d8caf05332d3860e0fa38b78b33f16b0647f3
RIG Image Gallery suffers from a remote file inclusion vulnerability.
271b3c07806dd523a9f75b24270e9ed373670b763a14daebe776ad04f86d8a25
phpCoupon appears to have a vulnerability that may allow for account privilege escalation.
ae116e9ac0913c469c1875b35fe96b9d982930f2dfca7137949a49acfeb70b58
itcms version 0.2 suffers from a cross site scripting vulnerability.
8ba202e557b3186769c533b464f077957bda2c5366c666484fd3cbb7563cd710
Commute Community is susceptible to a cross site scripting vulnerability.
ee91a129239c9ef7c5facf550e8d5dabc5984282e744e1db3d7129ea79a82514
All applications from E-Commerce scripts appear to suffer from a SQL injection vulnerability.
43d2d5bf137dfe4ba8bb6f9cc9dff2395e2a11cb3b9a3e7603557f3ef6fe21ab
Real Estate listing website application template suffers from a SQL injection vulnerability.
ef22df1d6a54aea9f82d6db0a9e9f765e5cb33c64cff6859086e370e59e2329b
Pay Roll - Time Sheet and Punch Card Application suffers from a SQL injection vulnerability.
b544c88bb3aee346e4eb21f1239d8870ee1362bf5d3ab4ecb14ea1cb1c5f6593
Message Board / Threaded Discussion Forum suffers from a SQL injection vulnerability.
1f01a53de5274bb21f879d365fd10017f7ad7797cdc3ed70cd58e93ec4fdbdf7
The WebStore Online Store Application template suffers from a SQL injection vulnerability.
20a1d1cd81364bcec73c4e28a5305f2a72903b09c5cc66e9b34da975d8756fd0
WebEvents: Online Event Registration template suffers from a SQL injection vulnerability.
0e5ed386bf5e6efe2d1dc319377ebda91bbbef28183b012751b34064660d62b2
Borland Interbase versions 2007 SP1 and below Create-Request remote overflow exploit that binds a shell to port 10282.
4523c89a5798f52f83e1a575e4e4d881664c4a0d89e663270505ef88a2f37f21
VMWare version 6.0.0 CreateProcess remote code execution exploit.
b1c1f084c7182afb022d7fdc42fd71a430b74a86ea0bcbf125de0fc5b34c8b59
VMWare version 6.0.0 remote code execution exploit that makes use of vielib.dll version 2.2.5.42958.
2d3f1abb9635c60c627a9c965b5296672b972657428b9e61b7a8906a9b1d96d3
corehttp version 0.5.3alpha remote buffer overflow exploit.
e98680cccb577b333592ef8e70b14717becc34ab537a7f4ffc2eb8a498ed7f3e