| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0620 | 5.0 |
download.php in FD Script 1.3.2 and earlier allows remote attackers to read source of files under the web document root with certain extensions, including .php, via a relative pathname in the fname parameter, as demonstrated by downloading config.php
|
16-10-2018 - 16:33 | 31-01-2007 - 11:28 | |
| CVE-2002-0974 | 5.0 |
Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.
|
12-10-2018 - 21:31 | 24-09-2002 - 04:00 | |
| CVE-2006-5539 | 7.5 |
PHP remote file inclusion vulnerability in login/secure.php in UeberProject Management System 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cfg[homepath] parameter.
|
19-10-2017 - 01:29 | 26-10-2006 - 17:07 | |
| CVE-2013-2038 | 4.3 |
The NMEA0183 driver in gpsd before 3.9 allows remote attackers to cause a denial of service (daemon termination) and possibly execute arbitrary code via a GPS packet with a malformed $GPGGA interpreted sentence that lacks certain fields and a termina
|
07-02-2014 - 15:24 | 06-02-2014 - 17:00 | |
| CVE-2006-5534 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in index.htm in Zwahlen Online Shop Freeware 5.2.2.50, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) Kat, (3) id, or (4) no parameters. NOT
|
13-09-2011 - 04:00 | 26-10-2006 - 17:07 |