Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-2731 | 4.0 |
CRLF injection vulnerability in formmail.php in Jetbox CMS 2.1 might allow remote attackers to inject arbitrary e-mail headers via LF (%0A) sequences in the subject parameter, a related issue to CVE-2007-1898.
|
16-10-2018 - 16:45 | 16-05-2007 - 22:30 | |
CVE-2007-1898 | 5.8 |
formmail.php in Jetbox CMS 2.1 allows remote attackers to send arbitrary e-mails (spam) via modified recipient, _SETTINGS[allowed_email_hosts][], and subject parameters.
|
16-10-2018 - 16:41 | 16-05-2007 - 22:30 | |
CVE-2007-1509 | 4.3 |
Directory traversal vulnerability in enkrypt.php in Sascha Schroeder krypt (aka Holtstraeter Rot 13) allows remote attackers to read arbitrary files via a .. (dot dot) in the datei parameter.
|
16-10-2018 - 16:38 | 20-03-2007 - 10:19 | |
CVE-2007-1422 | 7.5 |
SQL injection vulnerability in goster.asp in fystyq Duyuru Scripti allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-0688.
|
16-10-2018 - 16:38 | 13-03-2007 - 01:19 | |
CVE-2007-0688 | 7.5 |
SQL injection vulnerability in oku.asp in Hunkaray Duyuru Scripti allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
16-10-2018 - 16:33 | 03-02-2007 - 01:28 | |
CVE-2007-0160 | 7.5 |
Stack-based buffer overflow in the LiveJournal support (hooks/ljhook.cc) in CenterICQ 4.9.11 through 4.21.0, when using unofficial LiveJournal servers, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code b
|
16-10-2018 - 16:31 | 10-01-2007 - 00:28 | |
CVE-2007-2094 | 7.5 |
PHP remote file inclusion vulnerability in index.php in Anthologia 0.5.2 allows remote attackers to execute arbitrary PHP code via a URL in the ads_file parameter.
|
11-10-2017 - 01:32 | 18-04-2007 - 10:19 | |
CVE-2007-1488 | 7.5 |
Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application.
|
29-07-2017 - 01:30 | 16-03-2007 - 21:19 | |
CVE-2004-0073 | 7.5 |
PHP remote file inclusion vulnerability in (1) config.php and (2) config_page.php for EasyDynamicPages 2.0 allows remote attackers to execute arbitrary PHP code by modifying the edp_relative_path parameter to reference a URL on a remote web server th
|
11-07-2017 - 01:29 | 17-02-2004 - 05:00 | |
CVE-2007-2268 | 5.0 |
Multiple directory traversal vulnerabilities in SWsoft Plesk for Windows 7.6.1, 8.1.0, and 8.1.1 allow remote attackers to read arbitrary files via a .. (dot dot) in the locale_id parameter to (1) login.php3 or (2) login_up.php3.
|
08-03-2011 - 02:53 | 25-04-2007 - 20:19 |