| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1336 | 5.0 |
Cross-site scripting vulnerability in calendar.php in ExtCalendar 1.0 and possibly other versions before 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) year, (2) month, (3) next, and (4) prev parameters. This issue is
|
18-10-2018 - 16:32 | 21-03-2006 - 02:06 | |
| CVE-2007-6213 | 5.0 |
Multiple directory traversal vulnerabilities in mod/chat/index.php in WebED 0.0.9 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) Root and (2) Path parameters.
|
29-09-2017 - 01:29 | 04-12-2007 - 15:46 | |
| CVE-2007-6231 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in tellmatic 1.0.7 allow remote attackers to execute arbitrary PHP code via a URL in the tm_includepath parameter to (1) Classes.inc.php, (2) statistic.inc.php, (3) status.inc.php, (4) status_top_x.i
|
29-09-2017 - 01:29 | 04-12-2007 - 18:46 | |
| CVE-2007-6230 | 7.5 |
Directory traversal vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the CFG[site][project_path] parameter.
|
29-09-2017 - 01:29 | 04-12-2007 - 18:46 | |
| CVE-2012-1764 | 3.5 |
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.50, 8.51, and 8.52 allows remote authenticated users to affect integrity, related to MCF.
|
29-08-2017 - 01:31 | 17-07-2012 - 23:55 | |
| CVE-1999-0268 | 10.0 |
MetaInfo MetaWeb web server allows users to upload, execute, and read scripts.
|
09-09-2008 - 12:34 | 01-01-1999 - 05:00 |