| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-0878 | 5.0 |
Noah's Classifieds 1.3 allows remote attackers to obtain the installation path via a direct request to include files, as demonstrated by classifieds/gorum/category.php.
|
18-10-2018 - 16:29 | 24-02-2006 - 11:02 | |
| CVE-2006-0882 | 5.0 |
Directory traversal vulnerability in include.php in Noah's Classifieds 1.3 allows remote attackers to include arbitrary local files via the otherTemplate parameter to index.php.
|
18-10-2018 - 16:29 | 24-02-2006 - 11:02 | |
| CVE-2006-0879 | 7.5 |
SQL injection vulnerability in the search tool in Noah's Classifieds 1.3 allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors.
|
18-10-2018 - 16:29 | 24-02-2006 - 11:02 | |
| CVE-2006-0881 | 7.5 |
Multiple PHP remote file include vulnerabilities in gorum/gorumlib.php in Noah's Classifieds 1.3, when register_globals is enabled, allow remote attackers to include arbitrary PHP files via the (1) upperTemplate and (2) lowerTemplate parameters, as d
|
18-10-2018 - 16:29 | 24-02-2006 - 11:02 | |
| CVE-2006-0880 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Noah's Classifieds 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) inf parameter; or, when register_globals is enabled, the (2) upperTemplate and (3) lo
|
18-10-2018 - 16:29 | 24-02-2006 - 11:02 |