| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-5228 | 7.5 |
Multiple SQL injection vulnerabilities in the Google Gadget login.php (gadget/login.php) in Rob Hensley ackerTodo 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) up_login, (2) up_pass, or (3) up_num_tasks paramete
|
17-10-2018 - 21:41 | 10-10-2006 - 21:07 | |
| CVE-2013-2137 | 4.3 |
Cross-site scripting (XSS) vulnerability in the "View Log" screen in the Webtools application in Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and 12.04.01 allows remote attackers to inject arbitra
|
18-05-2018 - 12:17 | 15-08-2013 - 16:55 | |
| CVE-2013-2250 | 10.0 |
Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and 12.04.01 allows remote attackers to execute arbitrary Unified Expression Language (UEL) functions via JUEL metacharacters in unspecified parameters
|
18-05-2018 - 12:17 | 15-08-2013 - 16:55 | |
| CVE-2008-6783 | 7.5 |
SQL injection vulnerability in directory.php in Sites for Scripts (SFS) EZ Home Business Directory allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action.
|
29-09-2017 - 01:33 | 01-05-2009 - 17:30 | |
| CVE-2004-2422 | 5.0 |
Multiple features in Ipswitch IMail Server before 8.13 allow remote attackers to cause a denial of service (crash) via (1) a long sender field to the Queue Manager or (2) a long To field to the Web Messaging component.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 |