| Max CVSS | 7.5 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-5976 | 6.8 |
Cross Site Request Forgery (CSRF) exists in RSVP Invitation Online 1.0 via function/account.php, as demonstrated by modifying the admin password.
|
12-02-2018 - 15:34 | 24-01-2018 - 10:29 | |
| CVE-2007-2571 | 7.5 |
SQL injection vulnerability in index.php in the wfquotes 1.0 0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the c parameter in a cat action.
|
11-10-2017 - 01:32 | 09-05-2007 - 21:19 | |
| CVE-2015-7808 | 7.5 |
The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in the arguments parameter to ajax/api/h
|
25-11-2015 - 20:23 | 24-11-2015 - 20:59 |