IDCVSSSummaryLast (major) updatePublished
CVE-2006-1033 4.3
Multiple cross-site scripting (XSS) vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via (1) uname, (2) error, (3) profile or (4) the username filed parameter to the (a) Your_Account module
20-07-2017 - 01:30 07-03-2006 - 11:02
CVE-2006-4162 6.8
Cross-site scripting (XSS) vulnerability in Dragonfly CMS 9.0.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search field.
17-10-2018 - 21:33 16-08-2006 - 22:04
CVE-2006-0726 4.3
Cross-site scripting (XSS) vulnerability in linking.php in CPG-Nuke Dragonfly CMS 9.0.6.1 allows remote attackers to inject arbitrary web script or HTML via a URI that is generated when creating a list of online users.
20-07-2017 - 01:30 16-02-2006 - 11:02
CVE-2006-0644 7.5
Multiple directory traversal vulnerabilities in install.php in CPG-Nuke Dragonfly CMS (aka CPG Dragonfly CMS) 9.0.6.1 allow remote attackers to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in (
19-10-2018 - 15:45 10-02-2006 - 11:02
Back to Top Mark selected
Back to Top