| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-7026 | 6.8 |
Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct req
|
11-10-2018 - 20:58 | 21-08-2009 - 14:30 | |
| CVE-2008-4875 | 6.8 |
Directory traversal vulnerability in the web server in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a GET request. NOTE: this can be levera
|
11-10-2018 - 20:53 | 01-11-2008 - 06:00 | |
| CVE-2008-4874 | 5.0 |
The web component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 has a back door "service" account with "service" as its password, which makes it easier for remote attackers to obtain access.
|
11-10-2018 - 20:53 | 01-11-2008 - 06:00 | |
| CVE-2004-1821 | 7.5 |
SQL injection vulnerability in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to gain privileges or perform unauthorized database operations via the gid parameter.
|
11-07-2017 - 01:31 | 15-03-2004 - 05:00 |