| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4198 | 5.1 |
PHP remote file inclusion vulnerability in includes/session.php in Wheatblog (wB) 1.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wb_class_dir parameter. Successful exploitatio
|
17-10-2018 - 21:33 | 17-08-2006 - 21:04 | |
| CVE-2012-6534 | 4.3 |
Novell Sentinel Log Manager before 1.2.0.3 allows remote attackers to create data retention policies via a crafted text/x-gwt-rpc request to novelllogmanager/datastorageservice.rpc, and allows remote authenticated Report Administrators to create data
|
05-10-2017 - 01:29 | 29-03-2013 - 16:08 | |
| CVE-2012-4902 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in Template CMS 2.1.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator user via an add action to admin/index.php
|
05-10-2017 - 01:29 | 20-05-2015 - 19:59 | |
| CVE-2012-4901 | 4.3 |
Cross-site scripting (XSS) vulnerability in Template CMS 2.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the themes_editor parameter in an add_template action to admin/index.php.
|
05-10-2017 - 01:29 | 20-05-2015 - 19:59 | |
| CVE-2012-4988 | 9.3 |
Heap-based buffer overflow in the xjpegls.dll (aka JLS, JPEG-LS, or JPEG lossless) format plugin in XnView 1.99 and 1.99.1 allows remote attackers to execute arbitrary code via a crafted JLS image file.
|
05-10-2017 - 01:29 | 09-07-2014 - 14:55 | |
| CVE-2010-1715 | 6.8 |
Directory traversal vulnerability in the Online Examination (aka Online Exam or com_onlineexam) component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of th
|
17-08-2017 - 01:32 | 04-05-2010 - 16:00 |