| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2097 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End CMS 0.4.7 allow remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter to (1) click.php or (2) pollcollector.php in htdocs/; or (3) index.php,
|
14-05-2024 - 01:44 | 18-04-2007 - 10:19 | |
| CVE-2006-1274 | 7.2 |
Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain privileges via notepad.exe, which is used to display scan reports.
|
18-10-2018 - 16:31 | 19-03-2006 - 11:06 | |
| CVE-2006-4771 | 4.3 |
Cross-site scripting (XSS) vulnerability in haut.php in ForumJBC 4 allows remote attackers to inject arbitrary web script or HTML via the nb_connecte parameter.
|
17-10-2018 - 21:39 | 14-09-2006 - 00:07 | |
| CVE-2008-0395 | 5.0 |
Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information via a direct request to syncml/index.php, which prints the contents of the $_SERVER superglobal.
|
15-10-2018 - 21:59 | 23-01-2008 - 12:00 | |
| CVE-2008-5029 | 4.9 |
The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2.6.26, and earlier makes indirect recursive calls to itself through calls to the fput function, which allows local users to cause a denial of service (panic) via vectors rela
|
11-10-2018 - 20:53 | 10-11-2008 - 16:15 |