| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-1863 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allow remote attackers to inject arbitrary web script or HTML via (1) the u2uheader parameter in editprofile.php, the restrict parameter
|
29-04-2021 - 15:15 | 31-12-2004 - 05:00 | |
| CVE-2004-0107 | 4.6 |
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
|
11-10-2017 - 01:29 | 15-04-2004 - 04:00 | |
| CVE-2011-4341 | 4.3 |
Multiple SQL injection vulnerabilities in symphony/content/content.publish.php in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author permissions to execute arbitrary SQL commands via the filter pa
|
29-08-2017 - 01:30 | 12-02-2012 - 22:55 | |
| CVE-2009-4547 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in ViArt CMS 3.x allow remote attackers to inject arbitrary web script or HTML via the (1) category_id parameter to forums.php, or the forum_id parameter to (2) forum.php or (3) forum_topic_new.php.
|
17-08-2017 - 01:31 | 04-01-2010 - 17:30 | |
| CVE-2006-3285 | 7.5 |
The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) uses an undocumented, hard-coded username and password, which allows remote authenticated users to read, and possibly modify, sensitive configuration da
|
20-07-2017 - 01:32 | 28-06-2006 - 22:05 |