| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-12603 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in admin.php in LFCMS 3.7.0 allows remote attackers to hijack the authentication of unspecified users for requests that add administrator users via the s parameter, a related issue to CVE-2018-12114.
|
27-08-2018 - 17:34 | 25-06-2018 - 20:29 | |
| CVE-2008-0359 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1b allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) admin.php or (2) index.php in photo/.
|
19-10-2017 - 01:30 | 18-01-2008 - 22:00 | |
| CVE-2008-0360 | 7.5 |
Multiple SQL injection vulnerabilities in BLOG:CMS 4.2.1b allow remote attackers to execute arbitrary SQL commands via (1) the blogid parameter to index.php, (2) the user parameter to action.php, or (3) the field parameter to admin/plugins/table/inde
|
19-10-2017 - 01:30 | 18-01-2008 - 22:00 | |
| CVE-2010-4920 | 7.5 |
SQL injection vulnerability in detail.asp in Micronetsoft Rental Property Management Website 1.0 allows remote attackers to execute arbitrary SQL commands via the ad_ID parameter.
|
29-08-2017 - 01:29 | 08-10-2011 - 10:55 |