CVE-2007-0794

** DISPUTED ** SQL injection vulnerability in inc/common.php in GlobalMegaCorp dvddb 0.6 allows remote attackers to execute arbitrary SQL commands via the user parameter. NOTE: this issue has been disputed by a reliable third party, who states that inc/common.php only contains function definitions.

Publication date: Wed, 07 Feb 2007 01:28:00 +0000

Cyber News related to CVE-2007-0794

CVE-2015-2503 - Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2007 IME (Japanese) SP3, Access 2010 SP2, Excel 2010 SP2, InfoPath 2010 ...
6 years ago

CVE-2018-0794 - Microsoft Word in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution ...
4 years ago

CVE-2007-0794 - ** DISPUTED ** SQL injection vulnerability in inc/common.php in GlobalMegaCorp dvddb 0.6 allows remote attackers to execute arbitrary SQL commands via the user parameter. NOTE: this issue has been disputed by a reliable third party, who states that ...
6 years ago

CVE-2018-0792 - Microsoft Word 2016 in Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is unique from CVE-2018-0794. ...
4 years ago

CVE-2000-0794 - Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as (1) gmemusage and (2) gr_osview. ...
16 years ago

CVE-2001-0794 - Buffer overflow in A-FTP Anonymous FTP Server allows remote attackers to cause a denial of service via a long USER command. ...
16 years ago

CVE-2002-0794 - The accept_filter mechanism in FreeBSD 4 through 4.5 does not properly remove entries from the incomplete listen queue when adding a syncache, which allows remote attackers to cause a denial of service (network service availability) via a large ...
16 years ago

CVE-2003-0794 - GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not ...
7 years ago

CVE-2004-0794 - Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or execute arbitrary code. ...
7 years ago

CVE-2005-0794 - ZPanel 2.0 and 2.5 beta 10 does not remove or protect installation scripts after they have been used, which allows remote attackers to reinstall the software and possibly cause a denial of service via a direct request to install.php. ...
7 years ago

CVE-2006-0794 - help.php in V-webmail 1.6.2 allows remote attackers to obtain the installation path via unspecified invalid parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. ...
7 years ago

CVE-2013-0794 - Mozilla Firefox before 20.0 and SeaMonkey before 2.17 do not prevent origin spoofing of tab-modal dialogs, which allows remote attackers to conduct phishing attacks via a crafted web site. ...
7 years ago

CVE-2008-0794 - Directory traversal vulnerability in user/header.php in Affiliate Market 0.1 BETA allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter. ...
7 years ago

CVE-2014-0794 - SQL injection vulnerability in the JV Comment (com_jvcomment) component before 3.0.3 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a comment.like action to index.php. ...
6 years ago

CVE-1999-0794 - Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file. ...
6 years ago

CVE-2017-0794 - A elevation of privilege vulnerability in the Upstream kernel scsi driver. Product: Android. Versions: Android kernel. Android ID: A-35644812. ...
5 years ago

CVE-2019-0794 - A remote code execution vulnerability exists when OLE automation improperly handles objects in memory, aka 'OLE Automation Remote Code Execution Vulnerability'. ...
4 years ago

CVE-2015-0794 - modules.d/90crypt/module-setup.sh in the dracut package before 037-17.30.1 in openSUSE 13.2 allows local users to have unspecified impact via a symlink attack on /tmp/dracut_block_uuid.map. ...
4 years ago

CVE-2020-0794 - A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. ...
3 years ago

CVE-2022-0794 - Use after free in WebShare in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. ...
2 years ago

CVE-2016-0794 - The lwp filter in LibreOffice before 5.0.4 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted LotusWordPro (lwp) document. ...
1 year ago

CVE-2009-0794 - Integer overflow in the PulseAudioTargetDataL class in src/java/org/classpath/icedtea/pulseaudio/PulseAudioTargetDataLine.java in Pulse-Java, as used in OpenJDK 1.6.0.0 and other products, allows remote attackers to cause a denial of service (applet ...
1 year ago

CVE-2012-0794 - The rc4encrypt function in lib/moodlelib.php in Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 uses a hardcoded password of nfgjeingjk, which makes it easier for remote attackers to defeat cryptographic ...
1 year ago

CVE-2023-0794 - Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11. ...
1 year ago

CVE-2011-0794 - Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5.0 allows local users to affect confidentiality, integrity, and availability, related to File ID SDK. NOTE: the previous information was obtained ...
55 years ago Tenable.com

Latest Cyber News

CVE-2024-40890 - 15 hours ago
CVE-2024-40891 - 15 hours ago
CVE-2025-0847 - 16 hours ago
CVE-2025-0848 - 16 hours ago
CVE-2025-0849 - 16 hours ago
CVE-2025-0846 - 17 hours ago
CVE-2025-0844 - 18 hours ago
CVE-2025-21415 - 19 hours ago
CVE-2025-21396 - 19 hours ago
CVE-2025-0843 - 19 hours ago
CVE-2024-57665 - 19 hours ago
CVE-2024-57513 - 20 hours ago
CVE-2025-0842 - 20 hours ago
CVE-2025-0851 - 20 hours ago
CVE-2024-48761 - 20 hours ago
CVE-2024-51182 - 20 hours ago
CVE-2024-54851 - 20 hours ago
CVE-2024-54852 - 20 hours ago
CVE-2024-57395 - 20 hours ago
CVE-2024-57509 - 20 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2025-24099 - 1 day ago
CVE-2024-12749 - 1 day ago
CVE-2024-13696 - 1 day ago
CVE-2024-7695 - 1 day ago
CVE-2024-57965 - 1 day ago
CVE-2021-3978 - 1 day ago
CVE-2025-0617 - 1 day ago
CVE-2024-13561 - 1 day ago
CVE-2024-41140 - 1 day ago
CVE-2024-54461 - 1 day ago
CVE-2024-54462 - 1 day ago
CVE-2025-0353 - 1 day ago
CVE-2024-57436 - 1 day ago
CVE-2024-57437 - 1 day ago
CVE-2024-57438 - 1 day ago
CVE-2024-57439 - 1 day ago
CVE-2025-24374 - 1 day ago
CVE-2025-24792 - 1 day ago
CVE-2023-35907 - 1 day ago
CVE-2023-37398 - 1 day ago