| Max CVSS | 10.0 | Min CVSS | 7.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-4279 | 10.0 |
The default configuration of Pandora FMS 3.1 and earlier specifies an empty string for the loginhash_pwd field, which allows remote attackers to bypass authentication by sending a request to index.php with "admin" in the loginhash_user parameter, in
|
10-10-2018 - 20:07 | 02-12-2010 - 17:15 | |
| CVE-2008-2416 | 7.5 |
SQL injection vulnerability in index.php in FicHive 1.0 allows remote attackers to execute arbitrary SQL commands via the category parameter in a Fiction action, possibly related to sources/fiction.class.php.
|
29-09-2017 - 01:31 | 22-05-2008 - 13:09 |