| Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-3953 | 7.5 |
SQL injection vulnerability in admin/index.php in phpList before 2.10.19 allows remote administrators to execute arbitrary SQL commands via the delete parameter to the editattributes page.
|
29-08-2017 - 01:32 | 12-08-2012 - 00:55 | |
| CVE-2012-3952 | 2.6 |
Cross-site scripting (XSS) vulnerability in admin/index.php in phpList before 2.10.19 allows remote attackers to inject arbitrary web script or HTML via the unconfirmed parameter to the user page.
|
29-08-2017 - 01:32 | 12-08-2012 - 00:55 | |
| CVE-2012-4247 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in lists/admin/index.php in phpList before 2.10.19 allow remote attackers to inject arbitrary web script or HTML via the (1) remote_user, (2) remote_database, (3) remote_userprefix, (4) remote_passw
|
13-08-2012 - 14:23 | 12-08-2012 - 00:55 | |
| CVE-2012-4246 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in lists/admin/index.php in phpList before 2.10.19 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter; or the (2) footer, (3) status, or (4) testtarget paramete
|
13-08-2012 - 04:00 | 12-08-2012 - 00:55 |