| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-2240 | 7.5 |
Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier allow remote attackers to modify SQL statements via (1) the query string in read.php or (2) unknown vectors in file.php.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-2212 | 7.5 |
SQL injection vulnerability in forum.asp in AliveSites Forums 2.0 allows remote attackers to execute arbitrary SQL commands via the forum_id parameter.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-2211 | 4.3 |
Cross-site scripting (XSS) vulnerability in AliveSites Forums 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) forum_id, (2) method, or (3) forum_title parameters to post.asp, (4) the forum_title parameter to forum.asp,
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-2206 | 7.5 |
SQL injection vulnerability in NatterChat 1.12 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-2188 | 4.3 |
Cross-site scripting (XSS) vulnerability in DMXReady Site Chassis Manager allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
10-09-2008 - 19:33 | 31-12-2004 - 05:00 | |
| CVE-2004-2207 | 4.3 |
Cross-site scripting (XSS) vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
05-09-2008 - 20:43 | 31-12-2004 - 05:00 | |
| CVE-2004-2208 | 5.0 |
CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors.
|
05-09-2008 - 20:43 | 31-12-2004 - 05:00 | |
| CVE-2004-2210 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Express-Web Content Management System (CMS) allow remote attackers to steal cookie-based authentication information and possibly perform other exploits via the (1) n, (2) b, (3) e, or (4) a param
|
05-09-2008 - 20:43 | 31-12-2004 - 05:00 | |
| CVE-2004-2189 | 7.5 |
SQL injection vulnerability in DMXReady Site Chassis Manager allows remote attackers to execute arbitrary SQL commands via unknown vectors.
|
05-09-2008 - 20:43 | 31-12-2004 - 05:00 | |
| CVE-2004-2209 | 7.5 |
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
|
05-09-2008 - 20:43 | 31-12-2004 - 05:00 |