| Max CVSS | 4.3 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2011-3829 | 4.0 |
ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error message.
|
29-08-2017 - 01:30 | 29-01-2012 - 04:04 | |
| CVE-2007-4830 | 4.3 |
Cross-site scripting (XSS) vulnerability in CMD_BANDWIDTH_BREAKDOWN in DirectAdmin 1.30.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter.
|
29-07-2017 - 01:33 | 12-09-2007 - 19:17 | |
| CVE-2004-2293 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in PHP-Nuke 6.0 to 7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) eid parameter or (2) query parameter to the Encyclopedia module, (3) preview_review function in the R
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-2294 | 4.3 |
Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote attackers to inject arbitrary web script or HTML via hex-encoded XSS sequences in the text parameter, which is checked for danger
|
05-09-2008 - 20:43 | 31-12-2004 - 05:00 |