Max CVSS | 7.2 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-2078 | 6.8 |
PHP remote file inclusion vulnerability in index.php in Maian Weblog 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_folder parameter. NOTE: this issue was disputed by a third party researcher, since the path_to_fo
|
17-05-2024 - 00:33 | 18-04-2007 - 03:19 | |
CVE-2006-1134 | 5.1 |
SQL injection vulnerability in CyBoards PHP Lite 1.25, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the parent parameter to (1) post.php and possibly (2) process_post.php. Successful exploitation re
|
18-10-2018 - 16:30 | 10-03-2006 - 02:02 | |
CVE-2006-4825 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in cl_files/index.php in SoftComplex PHP Event Calendar 1.5.1, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) ti, (2) bi, or (3) cbgi parameters. Upd
|
17-10-2018 - 21:39 | 15-09-2006 - 22:07 | |
CVE-2008-0408 | 6.4 |
HTTP File Server (HFS) before 2.2c allows remote attackers to append arbitrary text to the log file by using the base64 representation of this text during HTTP Basic Authentication.
|
15-10-2018 - 21:59 | 29-01-2008 - 00:00 | |
CVE-2008-0407 | 5.0 |
HTTP File Server (HFS) before 2.2c tags HTTP request log entries with the username sent during HTTP Basic Authentication, regardless of whether authentication succeeded, which might make it more difficult for an administrator to determine who made a
|
15-10-2018 - 21:59 | 29-01-2008 - 00:00 | |
CVE-2008-5049 | 7.2 |
Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC
|
29-09-2017 - 01:32 | 13-11-2008 - 02:30 |