| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2564 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AlstraSoft E-Friends allow remote attackers to inject arbitrary web script or HTML by (1) posting a blog, (2) posting a listing, (3) posting an event, (4) adding comments, or (5) sen
|
18-10-2018 - 16:40 | 24-05-2006 - 20:02 | |
| CVE-2006-6268 | 10.0 |
SQL injection vulnerability in system/core/profile/profile.inc.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote authenticated users to execute arbitrary SQL commands via a url-encoded id parameter to users.php that begins with a va
|
17-10-2018 - 21:47 | 04-12-2006 - 11:28 | |
| CVE-2007-3911 | 10.0 |
Multiple heap-based buffer overflows in (1) clsscheduler.exe (aka scheduler client) and (2) srvscheduler.exe (aka scheduler server) in BakBone NetVault Reporter 3.5 before Update4 allow remote attackers to execute arbitrary code via long filename arg
|
15-10-2018 - 21:32 | 30-07-2007 - 17:30 | |
| CVE-2008-2781 | 7.5 |
SQL injection vulnerability in index.php in DZOIC Handshakes 3.5 allows remote attackers to execute arbitrary SQL commands via the fname parameter in a members search action.
|
11-10-2018 - 20:42 | 19-06-2008 - 20:41 |