| Max CVSS | 7.5 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1227 | 4.6 |
Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8, when menu.module is used to create a menu item, does not implement access control for the page that is referenced, which might allow remote attackers to access administrator pages.
|
18-10-2018 - 16:31 | 14-03-2006 - 19:06 | |
| CVE-2006-4796 | 4.3 |
Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).
|
17-10-2018 - 21:39 | 14-09-2006 - 21:07 | |
| CVE-2007-2105 | 7.5 |
Directory traversal vulnerability in admin/index.php in Monkey CMS 0.0.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the admin_skin parameter.
|
16-10-2018 - 16:41 | 18-04-2007 - 10:19 | |
| CVE-2008-5043 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in the web-based interface in IBM Metrica Service Assurance Framework allow remote authenticated users to inject arbitrary web script or HTML via (1) the elementid parameter in a generatedreportresu
|
11-10-2018 - 20:53 | 12-11-2008 - 23:30 |