Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-5549 | 7.5 |
PHP remote file inclusion vulnerability in libraries/amfphp/amf-core/custom/CachedGateway.php in Adobe PHP SDK allows remote attackers to execute arbitrary PHP code via the AMFPHP_BASE parameter. NOTE: this issue has been disputed by a third-party r
|
07-08-2024 - 20:15 | 26-10-2006 - 17:07 | |
CVE-2005-3788 | 5.4 |
Race condition in Cisco Adaptive Security Appliance (ASA) 7.0(0), 7.0(2), and 7.0(4), when running with an Active/Standby configuration and when the failover LAN interface fails, allows remote attackers to cause a denial of service (standby firewall
|
11-08-2023 - 18:54 | 24-11-2005 - 11:03 | |
CVE-2006-3335 | 7.2 |
Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.
|
18-10-2018 - 16:46 | 03-07-2006 - 01:05 | |
CVE-2006-5537 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/webcm in D-Link DSL-G624T firmware 3.00B01T01.YA-C.20060616 allow remote attackers to inject arbitrary web script or HTML via the (1) upnp:settings/state or (2) upnp:settings/connection p
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
CVE-2006-5533 | 5.1 |
Multiple PHP remote file inclusion vulnerabilities in AROUNDMe 0.6.9, and possibly earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the templatePath parameter in template/barnraiser_01/pol_v
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
CVE-2006-5543 | 5.1 |
PHP remote file inclusion vulnerability in misc/function.php3 in PHP Generator of Object SQL Database (PGOSD), when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
CVE-2006-5536 | 5.0 |
Directory traversal vulnerability in cgi-bin/webcm in D-Link DSL-G624T firmware 3.00B01T01.YA-C.20060616 allows remote attackers to read arbitrary files via a .. (dot dot) in the getpage parameter.
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
CVE-2006-5560 | 4.3 |
Cross-site scripting (XSS) vulnerability in heading.php in Boesch ProgSys 0.151 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php, and unspecified vectors related to certain other files.
|
17-10-2018 - 21:43 | 27-10-2006 - 16:07 | |
CVE-2006-5591 | 5.0 |
Multiple SQL injection vulnerabilities in Admin/check.asp in PacPoll 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) uid and (2) pwd parameters.
|
17-10-2018 - 21:43 | 27-10-2006 - 18:07 | |
CVE-2006-5535 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in WebHostManager (WHM) 10.8.0 cPanel 10.9.0 R50 allow remote attackers to inject arbitrary web script or HTML via the (1) theme parameter to scripts/dosetmytheme and the (2) template parameter to s
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
CVE-2006-5594 | 7.5 |
PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: it is possible that this issue is related to Cake
|
17-10-2018 - 21:43 | 27-10-2006 - 18:07 | |
CVE-2006-5592 | 7.5 |
Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote attackers to bypass authentication by setting the polllog cookie value to "xx".
|
17-10-2018 - 21:43 | 27-10-2006 - 18:07 | |
CVE-2006-5527 | 7.5 |
PHP remote file inclusion vulnerability in lib.editor.inc.php in Intelimen InteliEditor 1.2.x allows remote attackers to execute arbitrary PHP code via a URL in the sys_path parameter.
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
CVE-2007-0430 | 4.9 |
The shared_region_map_file_np function in Apple Mac OS X 10.4.8 and earlier kernel allows local users to cause a denial of service (memory corruption) via a large mappingCount value.
|
16-10-2018 - 16:32 | 23-01-2007 - 02:28 | |
CVE-2007-5141 | 6.8 |
SQL injection vulnerability in search.php in SiteX CMS 0.7.3 Beta allows remote attackers to execute arbitrary SQL commands via the search parameter.
|
15-10-2018 - 21:40 | 28-09-2007 - 21:17 | |
CVE-2008-3764 | 7.5 |
Eval injection vulnerability in globalsoff.php in Turnkey PHP Live Helper 2.0.1 and earlier allows remote attackers to execute arbitrary PHP code via the test parameter, and probably arbitrary parameters, to chat.php. Upgrade to Version 2.1.0 - http:
|
11-10-2018 - 20:49 | 21-08-2008 - 17:41 | |
CVE-2008-3763 | 6.8 |
Variable overwrite vulnerability in libsecure.php in Turnkey PHP Live Helper 2.0.1 and earlier, when register_globals is enabled, allows remote attackers to overwrite arbitrary variables related to the db config file. NOTE: this can be leveraged for
|
11-10-2018 - 20:49 | 21-08-2008 - 17:41 | |
CVE-2008-3762 | 7.5 |
SQL injection vulnerability in onlinestatus_html.php in Turnkey PHP Live Helper 2.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the dep parameter, related to lack of input sanitization in the get function in global.php
|
11-10-2018 - 20:49 | 21-08-2008 - 17:41 | |
CVE-2006-5568 | 5.0 |
FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.
|
20-07-2017 - 01:33 | 27-10-2006 - 16:07 | |
CVE-2011-1565 | 10.0 |
Directory traversal vulnerability in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to (1) read (opcode 0x3) or (2) create or write (opcode 0x2) arbitrary files via ..\
|
22-09-2011 - 03:30 | 05-04-2011 - 15:19 |