| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-3458 | 7.5 |
SQL injection vulnerability in lib/toolkit/events/event.section.php in Symphony CMS 2.0.7 and 2.1.1 allows remote attackers to execute arbitrary SQL commands via the send-email[recipient] parameter to about/. NOTE: some of these details are obtained
|
25-08-2020 - 15:59 | 17-09-2010 - 20:00 | |
| CVE-2010-3457 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.0.7 and 2.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) fields[website] parameter in the post comments feature in articles/a-primer-to-symphony-2s-d
|
25-08-2020 - 15:59 | 17-09-2010 - 20:00 | |
| CVE-2018-7573 | 10.0 |
An issue was discovered in FTPShell Client 6.7. A remote FTP server can send 400 characters of 'F' in conjunction with the FTP 220 response code to crash the application; after this overflow, one can run arbitrary code on the victim machine. This is
|
01-03-2019 - 18:27 | 01-03-2018 - 17:29 | |
| CVE-2008-0447 | 7.5 |
SQL injection vulnerability in index.php in Foojan WMS PHP Weblog 1.0 allows remote attackers to execute arbitrary SQL commands via the story parameter.
|
29-09-2017 - 01:30 | 25-01-2008 - 00:00 | |
| CVE-2014-100003 | 7.5 |
SQL injection vulnerability in includes/ym-download_functions.include.php in the Code Futures YourMembers plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the ym_download_id parameter to the default URI.
|
24-03-2015 - 20:49 | 13-01-2015 - 11:59 |