| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-5015 | 6.8 |
Multiple PHP remote file inclusion vulnerabilities in Streamline PHP Media Server 1.0-beta4 allow remote attackers to execute arbitrary PHP code via a URL in the sl_theme_unix_path parameter to (1) admin_footer.php, (2) info_footer.php, (3) theme_foo
|
29-09-2017 - 01:29 | 20-09-2007 - 21:17 | |
| CVE-2012-2727 | 5.8 |
Open redirect vulnerability in the Janrain Capture module 6.x-1.0 and 7.x-1.0 for Drupal, when synchronizing user data, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination paramet
|
29-08-2017 - 01:31 | 27-06-2012 - 00:55 | |
| CVE-2010-2021 | 5.8 |
Open redirect vulnerability in the Global Redirect module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, when non-clean to clean is enabled, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks
|
17-08-2017 - 01:32 | 25-06-2012 - 21:55 | |
| CVE-2004-2624 | 4.3 |
Cross-site scripting (XSS) vulnerability in "TextSearch" in WackoWiki 3.5 allows remote attackers to inject arbitrary web script or HTML via the "phrase" parameter.
|
20-07-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2005-2397 | 4.3 |
Cross-site scripting (XSS) vulnerability in guestbook.php in phpBook 1.46 allows remote attackers to inject arbitrary web script or HTML via the admin parameter.
|
11-07-2017 - 01:32 | 27-07-2005 - 04:00 | |
| CVE-2012-3798 | 5.0 |
The Janrain Capture module 6.x-1.0 and 7.x-1.0 for Drupal, when creating a local user account, allows attackers to obtain part of the initial input used to generate passwords, which makes it easier to conduct brute force password guessing attacks.
|
27-06-2012 - 04:00 | 27-06-2012 - 00:55 |