| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-0994 | 7.5 |
Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values,"
|
18-10-2018 - 16:30 | 10-05-2006 - 10:02 | |
| CVE-2006-5928 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in Phpjobscheduler 3.0 allow remote attackers to execute arbitrary PHP code via a URL in the installed_config_file parameter to (1) add-modify.php, (2) delete.php, (3) modify.php, and (4) phpjobsched
|
17-10-2018 - 21:46 | 16-11-2006 - 00:07 | |
| CVE-2007-3639 | 4.0 |
WordPress before 2.2.2 allows remote attackers to redirect visitors to other websites and potentially obtain sensitive information via (1) the _wp_http_referer parameter to wp-pass.php, related to the wp_get_referer function in wp-includes/functions.
|
15-10-2018 - 21:29 | 10-07-2007 - 00:30 | |
| CVE-2008-2167 | 4.3 |
Cross-site scripting (XSS) vulnerability in ZyXEL ZyWALL 100 allows remote attackers to inject arbitrary web script or HTML via the Referer header, which is not properly handled in a 404 Error page.
|
11-10-2018 - 20:39 | 13-05-2008 - 20:20 | |
| CVE-2008-5851 | 7.5 |
SQL injection vulnerability in index.php in My PHP Baseball Stats (MyPBS) allows remote attackers to execute arbitrary SQL commands via the seasonID parameter.
|
29-09-2017 - 01:32 | 06-01-2009 - 17:30 |