Max CVSS | 9.0 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-6554 | 9.0 |
pmmasterd in Quest Privilege Manager before 6.0.0.061, when configured as a policy server, allows remote attackers to write to arbitrary files and consequently execute arbitrary code with root privileges via an ACT_NEWFILESENT action.
|
03-10-2019 - 00:03 | 14-04-2017 - 18:59 | |
CVE-2006-2845 | 7.5 |
PHP remote file inclusion vulnerability in Redaxo 3.0 up to 3.2 allows remote attackers to execute arbitrary PHP code via a URL in the REX[INCLUDE_PATH] parameter to image_resize/pages/index.inc.php.
|
18-10-2018 - 16:43 | 06-06-2006 - 20:06 | |
CVE-2006-2844 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in Redaxo 3.0 allow remote attackers to execute arbitrary PHP code via a URL in the REX[INCLUDE_PATH] parameter to (1) simple_user/pages/index.inc.php and (2) stats/pages/index.inc.php.
|
18-10-2018 - 16:43 | 06-06-2006 - 20:06 | |
CVE-2006-2843 | 7.5 |
PHP remote file inclusion vulnerability in Redaxo 2.7.4 allows remote attackers to execute arbitrary PHP code via a URL in the (1) REX[INCLUDE_PATH] parameter in (a) addons/import_export/pages/index.inc.php and (b) pages/community.inc.php.
|
18-10-2018 - 16:43 | 06-06-2006 - 20:06 | |
CVE-2012-5333 | 7.5 |
SQL injection vulnerability in page.php in Pre Printing Press allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-08-2017 - 01:32 | 08-10-2012 - 23:55 | |
CVE-2012-5335 | 4.0 |
Directory traversal vulnerability in Tiny Server 1.1.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the URI of an HTTP request.
|
29-08-2017 - 01:32 | 08-10-2012 - 23:55 | |
CVE-2012-5334 | 7.5 |
SQL injection vulnerability in product_desc.php in Pre Printing Press allows remote attackers to execute arbitrary SQL commands via the pid parameter.
|
29-08-2017 - 01:32 | 08-10-2012 - 23:55 | |
CVE-2012-5329 | 4.0 |
Buffer overflow in TYPSoft FTP Server 1.1 allows remote authenticated users to cause a denial of service (application crash) via a long string in an APPE command.
|
26-01-2013 - 04:58 | 08-10-2012 - 23:55 |