CVSS: 2.1EPSS: 0%CPEs: 5EXPL: 0CVE-2007-1589
https://notcve.org/view.php?id=CVE-2007-1589
TrueCrypt before 4.3, when set-euid mode is used on Linux, allows local users to cause a denial of service (filesystem unavailability) by dismounting a volume mounted by a different user. TrueCrypt versiones anteriores a 4.3, cuando se usa el modo Linux set-euid, permite a usuarios locales provocar una denegación de servicio (indisposición de sistema de ficheros) al desmontar un volumen montado por un usuario diferente. • http://secunia.com/advisories/24627 http://www.securityfocus.com/bid/23128 http://www.truecrypt.org/docs/?s=version-history http://www.vupen.com/english/advisories/2007/1103 •
CVSS: 5.0EPSS: 2%CPEs: 2EXPL: 2CVE-2007-1158 – Pagesetter 6.2/6.3.0 - 'index.php' Local File Inclusion
https://notcve.org/view.php?id=CVE-2007-1158
Directory traversal vulnerability in index.php in the Pagesetter 6.2.0 through 6.3.0 beta 5 module for PostNuke allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter. Vulnerabilidad de escalado de directorio en index.php del módulo Pagesetter 6.2.0 hasta el 6.3.0 beta 5 para el PostNuke permite a atacantes remotos leer ficheros de su elección mediante un .. (punto punto) en el parámetro id. • https://www.exploit-db.com/exploits/29681 http://marc.info/?l=full-disclosure&m=117251821622820&w=2 http://marc.info/?l=full-disclosure&m=117256698219502&w=2 http://osvdb.org/33781 http://secunia.com/advisories/24299 http://securityreason.com/securityalert/2336 http://www.elfisk.dk/index.php?module=pagesetter&func=viewpub&tid=7&pid=125 http://www.securityfocus.com/archive/1/461339/100/0/threaded http://www.securityfocus.com/bid/22733 http://www.vupen.com/english/a •
CVSS: 5.1EPSS: 1%CPEs: 1EXPL: 0CVE-2007-0384
https://notcve.org/view.php?id=CVE-2007-0384
Cross-site scripting (XSS) vulnerability in preview in the reviews section in PostNuke 0.764 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilida de secuencias de comandos en sitios cruzados (XSS) en preview en la sección reviews en PostNuke 0.764 permite a atacantes remotos inyectar secuencias de comando web o HTML a través de vectores no especificados. • http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html http://noc.postnuke.com/plugins/scmsvn/viewcvs.php/trunk/Historic/PostNuke7x/html/modules/?root=postnuke http://osvdb.org/35473 http://www.hackers.ir/advisories/festival.txt http://www.securityfocus.com/bid/22119 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-0385
https://notcve.org/view.php?id=CVE-2007-0385
The faq section in PostNuke 0.764 allows remote attackers to obtain sensitive information (the full path) via "unvalidated output" in FAQ/index.php, possibly involving an undefined id_cat variable. La sección faq en Postnuke 0.764 permite a atacantes remotos obtener información sensible (la ruta completa) a través "salidas no validas) en FAQ/index.php, posiblemente afectando a la variable no definida id_cat. • http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html http://noc.postnuke.com/plugins/scmsvn/viewcvs.php/trunk/Historic/PostNuke7x/html/modules/?root=postnuke http://noc.postnuke.com/plugins/scmsvn/viewcvs.php/trunk/Historic/PostNuke7x/html/modules/FAQ/index.php?root=postnuke&r1=20350&r2=20911 http://osvdb.org/35472 http://www.hackers.ir/advisories/festival.txt •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2007-0386
https://notcve.org/view.php?id=CVE-2007-0386
Unspecified vulnerability in the rating section in PostNuke 0.764 has unknown impact and attack vectors, related to "an interesting bug." Vulnerabilidad no especificada en la sección rating en PostNuke 0.764 tiene un impacto desconocido y vectores de ataque, relacionado con "un bug interesante". • http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html http://osvdb.org/35471 http://www.hackers.ir/advisories/festival.txt •