| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1027 | 5.0 |
feedcreator.class.php (aka the syndication component) in Joomla! 1.0.7 allows remote attackers to obtain sensitive information via a "/" (slash) in the feed parameter to index.php, which reveals the path in an error message.
|
18-10-2018 - 16:30 | 07-03-2006 - 00:02 | |
| CVE-2007-5058 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Web administration interface in Barracuda Spam Firewall before firmware 3.5.10.016 allows remote attackers to inject arbitrary web script or HTML via the username field in a login attempt, which is not
|
15-10-2018 - 21:40 | 24-09-2007 - 22:17 | |
| CVE-2007-3908 | 4.6 |
Unspecified vulnerability in HP ServiceGuard for Linux for Red Hat Enterprise Linux (RHEL) 2.1 SG A.11.14.04 through A.11.14.06; RHEL 3.0 SG A.11.16.04 through A.11.16.10; and ServiceGuard Cluster Object Manager B.03.01.02 allows local users to gain
|
15-10-2018 - 21:32 | 19-07-2007 - 17:30 | |
| CVE-2007-2933 | 7.5 |
SQL injection vulnerability in index.php in the Phil-a-Form (com_philaform) 1.2.0.0 and earlier component for Joomla! allows remote attackers to execute arbitrary SQL commands via the form_id parameter.
|
11-10-2017 - 01:32 | 31-05-2007 - 00:30 | |
| CVE-2007-2937 | 7.5 |
PHP remote file inclusion vulnerability in admin/admin.php in TROforum 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the site_url parameter.
|
11-10-2017 - 01:32 | 31-05-2007 - 00:30 | |
| CVE-2007-2936 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in Frequency Clock 0.1b (Beta 0.1) allow remote attackers to execute arbitrary PHP code via a URL in the securelib parameter to (1) conf.php or (2) cp2.php.
|
11-10-2017 - 01:32 | 31-05-2007 - 00:30 | |
| CVE-2000-0797 | 7.2 |
Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option.
|
10-10-2017 - 01:29 | 20-10-2000 - 04:00 | |
| CVE-2007-5070 | 10.0 |
Heap-based buffer overflow in the EasyMailMessagePrinter ActiveX control in emprint.DLL 6.0.1.0 in the Quiksoft EasyMail MessagePrinter Object allows remote attackers to execute arbitrary code via a long string in the first argument to the SetFont me
|
29-09-2017 - 01:29 | 24-09-2007 - 23:17 | |
| CVE-2007-5065 | 7.5 |
PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
|
29-09-2017 - 01:29 | 24-09-2007 - 22:17 | |
| CVE-2013-4634 | 7.5 |
SQL injection vulnerability in the jQuery autocomplete for indexed_search (rzautocomplete) extension before 0.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
29-08-2017 - 01:33 | 20-06-2013 - 23:55 | |
| CVE-2007-5629 | 4.3 |
Cross-site scripting (XSS) vulnerability in admin/logon.asp in ShoppingTree CandyPress Store 4.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter, a different vector than CVE-2007-2804. NOTE: the provenance of thi
|
29-07-2017 - 01:33 | 23-10-2007 - 16:46 |