Max CVSS | 7.6 | Min CVSS | 4.4 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2004-2106 | 5.0 |
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to (1) /com/, (2) /com/novell/, (3) /com/novell/webaccess, or (4) /ns-icons/.
|
30-10-2018 - 16:26 | 31-12-2004 - 05:00 | |
CVE-2007-0156 | 7.5 |
M-Core stores the database under the web document root, which allows remote attackers to obtain sensitive information via a direct request to db/uyelik.mdb.
|
16-10-2018 - 16:31 | 09-01-2007 - 18:28 | |
CVE-2004-0032 | 6.8 |
Cross-site scripting (XSS) vulnerability in search.php in PHPGEDVIEW 2.61 allows remote attackers to inject arbitrary HTML and web script via the firstname parameter.
|
10-10-2017 - 01:30 | 20-01-2004 - 05:00 | |
CVE-2006-1794 | 7.6 |
SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to execute arbitrary SQL commands via (1) the $username variable in the mosGetParam function and (2) the $task parameter in the mosMenuCheck fun
|
20-07-2017 - 01:30 | 17-04-2006 - 10:02 | |
CVE-2007-1027 | 4.4 |
Certain setuid DB2 binaries in IBM DB2 before 9 Fix Pack 2 for Linux and Unix allow local users to overwrite arbitrary files via a symlink attack on the DB2DIAG.LOG temporary file.
|
08-03-2011 - 02:51 | 21-02-2007 - 11:28 |