| Max CVSS | 9.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1652 | 9.0 |
Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and earlier and (b) tabbed_viewer 1.29 (1) allow user-assisted remote attackers to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP
|
18-10-2018 - 16:33 | 06-04-2006 - 10:04 | |
| CVE-2006-5131 | 7.5 |
module/shout/jafshout.php (aka the shoutbox) in ph03y3nk just another flat file (JAF) CMS 4.0 RC1 allows remote attackers to execute arbitrary code within sections bounded by "<?php" and "?>", possibly due to a static code injection vulnerability inv
|
17-10-2018 - 21:41 | 03-10-2006 - 04:03 | |
| CVE-2006-5129 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in ph03y3nk just another flat file (JAF) CMS 4.0 RC1 allow remote attackers to inject arbitrary web script or HTML via (1) the message parameter, and possibly other parameters, in module/shout/jafsh
|
17-10-2018 - 21:41 | 03-10-2006 - 04:03 | |
| CVE-2007-2492 | 7.5 |
SQL injection vulnerability in index.php in the v4bJournal module for PostNuke allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a journal_comment action.
|
16-10-2018 - 16:44 | 04-05-2007 - 00:19 | |
| CVE-2008-0837 | 4.3 |
Cross-site scripting (XSS) vulnerability in the log feature in the John Godley Search Unleashed 0.2.10 plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, which is not properly handled when the adm
|
15-10-2018 - 22:03 | 20-02-2008 - 21:44 | |
| CVE-2008-5306 | 7.5 |
SQL injection vulnerability in admin/index.php in PG Real Estate Solution allows remote attackers to execute arbitrary SQL commands via the login_lg parameter (username). NOTE: some of these details are obtained from third party information.
|
29-09-2017 - 01:32 | 02-12-2008 - 12:00 |