| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0172 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.3.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the AMG_serverpath parameter to (1) comments.php and (2) signin.php; and possibly via a URL in unspe
|
23-04-2024 - 19:52 | 11-01-2007 - 00:28 | |
| CVE-2008-6427 | 6.8 |
SQL injection vulnerability in index.php in Hivemaker Professional 1.0.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
11-10-2018 - 20:57 | 06-03-2009 - 18:30 | |
| CVE-2009-3826 | 5.0 |
Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL t
|
10-10-2018 - 19:47 | 28-10-2009 - 14:30 | |
| CVE-2009-3700 | 5.0 |
Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode."
|
10-10-2018 - 19:47 | 28-10-2009 - 14:30 | |
| CVE-2006-2767 | 5.1 |
PHP remote file inclusion vulnerability in Ottoman 1.1.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the default_path parameter in (1) error.php, (2) index.php, and (3) classes/main_class.php.
|
19-10-2017 - 01:29 | 02-06-2006 - 10:18 | |
| CVE-2004-0189 | 7.5 |
The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows remote attackers to bypass url_regex ACLs via a URL with a NULL ("%00") character, which causes Squid to use only a portion of the requested URL when comparing it against the acce
|
10-10-2017 - 01:30 | 15-03-2004 - 05:00 |