| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-17173 | 7.5 |
LG SuperSign CMS allows remote attackers to execute arbitrary code via the sourceUri parameter to qsr_server/device/getThumbnail.
|
06-05-2019 - 21:29 | 21-09-2018 - 17:29 | |
| CVE-2008-2036 | 7.5 |
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the poll_id parameter in a poll action.
|
11-10-2018 - 20:38 | 30-04-2008 - 16:17 | |
| CVE-2010-4631 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) countrycode parameter to contact.asp, USERNAME parameter to (2) gateway.asp and (3) cart.asp, and
|
17-08-2017 - 01:33 | 30-12-2010 - 21:00 | |
| CVE-2010-4632 | 7.5 |
Multiple SQL injection vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to execute arbitrary SQL commands via the (1) article parameter to kb.asp, (2) specific parameter to cart.asp, (3) countrycode parameter to contact.asp, and the (
|
31-12-2010 - 05:00 | 30-12-2010 - 21:00 |