| Max CVSS | 9.3 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4597 | 7.5 |
SQL injection vulnerability in devam.asp in ICBlogger 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the YID parameter.
|
17-10-2018 - 21:38 | 07-09-2006 - 00:04 | |
| CVE-2007-6609 | 5.0 |
Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote attackers to execute arbitrary code via a long (1) cTag or (2) cValue field in an OGG Vorbis file.
|
15-10-2018 - 21:55 | 31-12-2007 - 20:46 | |
| CVE-2008-4720 | 9.3 |
Multiple PHP remote file inclusion vulnerabilities in The Gemini Portal 4.7 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to (1) page/forums/bottom.php and (2) page/forums/category.php.
|
29-09-2017 - 01:32 | 23-10-2008 - 20:00 | |
| CVE-2006-1967 | 2.6 |
Cross-site scripting (XSS) vulnerability in calendar/Visitor.cgi in KCScripts Calendar, distributed individually and as part of Portal Pack 6.0 and earlier, allows remote attackers to inject arbitrary web script or HTML via the sort_order parameter.
|
20-07-2017 - 01:31 | 21-04-2006 - 10:02 | |
| CVE-2010-4998 | 7.5 |
PHP remote file inclusion vulnerability in ardeaCore/lib/core/ardeaInit.php in ardeaCore PHP Framework 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the pathForArdeaCore parameter. NOTE: some of these details are obtained fr
|
14-02-2012 - 04:02 | 02-11-2011 - 21:55 |