| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-1951 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in PropertyMax Pro FREE 0.3 allows remote attackers to inject arbitrary web script or HTML via the pl parameter in a mi action.
|
29-09-2017 - 01:34 | 05-06-2009 - 21:30 | |
| CVE-2009-1952 | 6.8 |
Multiple SQL injection vulnerabilities in the administrative login feature in PropertyMax Pro FREE 0.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
|
29-09-2017 - 01:34 | 05-06-2009 - 21:30 | |
| CVE-2012-2923 | 7.5 |
SQL injection vulnerability in news.php4 in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary SQL commands via the nid parameter.
|
29-08-2017 - 01:31 | 21-05-2012 - 22:55 | |
| CVE-2012-2924 | 7.5 |
PHP remote file inclusion vulnerability in admin/setup.inc.php in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
|
29-08-2017 - 01:31 | 21-05-2012 - 22:55 |