| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2565 | 7.5 |
SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via (1) the author_id parameter in profile.php and (2) the aut_id parameter in userarticles.php. NOTE: the aut_id vector can
|
18-10-2018 - 16:40 | 24-05-2006 - 20:02 | |
| CVE-2006-2567 | 4.3 |
Cross-site scripting (XSS) vulnerability in submit_article.php in Alstrasoft Article Manager Pro 1.6 allows remote attackers to inject arbitrary web script or HTML when submitting an article, as demonstrated using a javascript URI in a Cascading Styl
|
18-10-2018 - 16:40 | 24-05-2006 - 20:02 | |
| CVE-2006-2566 | 5.0 |
Alstrasoft Article Manager Pro 1.6 allows remote attackers to obtain sensitive information via (1) a quote character or possibly an invalid value in the action parameter in a request to mrarticles.php or (2) a login QUERY_STRING to admin.php without
|
18-10-2018 - 16:40 | 24-05-2006 - 20:02 | |
| CVE-2006-6232 | 7.5 |
PHP remote file inclusion vulnerability in admin/index.php in DreamAccount 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
|
17-10-2018 - 21:47 | 02-12-2006 - 02:28 | |
| CVE-2007-4111 | 6.8 |
SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.
|
15-10-2018 - 21:33 | 31-07-2007 - 10:17 | |
| CVE-2008-2751 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in the Glassfish webadmin interface in Sun Java System Application Server 9.1_01 allow remote attackers to inject arbitrary web script or HTML via the (1) propertyForm:propertyContentPage:propertySh
|
11-10-2018 - 20:42 | 18-06-2008 - 19:41 |