| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2003 | 6.8 |
InoutMailingListManager 3.1 and earlier sends a Location redirect header but does not exit after an authorization check fails, which allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by ign
|
11-10-2017 - 01:32 | 12-04-2007 - 19:19 | |
| CVE-2007-2002 | 6.8 |
InoutMailingListManager 3.1 and earlier allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by setting an arbitrary admin cookie.
|
11-10-2017 - 01:32 | 12-04-2007 - 19:19 | |
| CVE-2007-2004 | 7.5 |
Multiple SQL injection vulnerabilities in InoutMailingListManager 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to changename.php and other unspecified vectors.
|
11-10-2017 - 01:32 | 12-04-2007 - 19:19 | |
| CVE-2006-0658 | 5.0 |
Incomplete blacklist vulnerability in connector.php in FCKeditor 2.0 and 2.2, as used in products such as RunCMS, allows remote attackers to upload and execute arbitrary script files by giving the files specific extensions that are not listed in the
|
11-10-2017 - 01:30 | 13-02-2006 - 11:06 | |
| CVE-2014-4034 | 7.5 |
SQL injection vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote attackers to execute arbitrary SQL commands via the article_id parameter.
|
29-08-2017 - 01:34 | 11-06-2014 - 14:55 |