| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2072 | 7.5 |
PHP remote file inclusion vulnerability in index.php in Ivan Gallery Script 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the dir parameter. NOTE: this issue has been disputed by third party researchers for 0.3, stating that
|
11-04-2024 - 00:42 | 18-04-2007 - 03:19 | |
| CVE-2008-0387 | 7.8 |
Integer overflow in Firebird SQL 1.0.3 and earlier, 1.5.x before 1.5.6, 2.0.x before 2.0.4, and 2.1.x before 2.1.0 RC1 might allow remote attackers to execute arbitrary code via crafted (1) op_receive, (2) op_start, (3) op_start_and_receive, (4) op_s
|
26-10-2018 - 14:19 | 29-01-2008 - 02:00 | |
| CVE-2006-1228 | 5.1 |
Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier. This vulnerability affects Drupal versions 4.6.x bef
|
18-10-2018 - 16:31 | 14-03-2006 - 19:06 | |
| CVE-2006-4797 | 4.3 |
Cross-site scripting (XSS) vulnerability in tag.php in CloudNine Interactive CJ Tag Board 3.0 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a url BBcode tag in the cjmsg parameter.
|
17-10-2018 - 21:39 | 14-09-2006 - 21:07 | |
| CVE-2008-5047 | 7.5 |
SQL injection vulnerability in admin/index.php in Mole Group Rental Script allows remote attackers to execute arbitrary SQL commands via the username parameter.
|
29-09-2017 - 01:32 | 13-11-2008 - 02:30 |