Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-6160 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Tilde CMS 4.x and earlier allows remote attackers to inject arbitrary web script or HTML via the aarstal parameter in a yeardetail action.
|
15-10-2018 - 21:50 | 29-11-2007 - 01:46 | |
CVE-2007-6161 | 5.0 |
index.php in Tilde CMS 4.x and earlier allows remote attackers to obtain sensitive information via a certain search parameter value in a search action, which reveals the path.
|
15-10-2018 - 21:50 | 29-11-2007 - 01:46 | |
CVE-2007-6159 | 7.5 |
SQL injection vulnerability in index.php in Tilde CMS 4.x and earlier allows remote attackers to execute arbitrary SQL commands via the aarstal parameter in a yeardetail action, a different vector than CVE-2006-1500.
|
15-10-2018 - 21:50 | 29-11-2007 - 01:46 |