| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1237 | 7.5 |
Multiple SQL injection vulnerabilities in DSNewsletter 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the email parameter to (1) include/sub.php, (2) include/confirm.php, or (3) include/unconfirm.php
|
18-10-2018 - 16:31 | 15-03-2006 - 16:06 | |
| CVE-2006-4958 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.20.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2)
|
17-10-2018 - 21:40 | 23-09-2006 - 10:07 | |
| CVE-2006-4959 | 5.0 |
Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.3 allows remote attackers to obtain sensitive information, including hostnames, versions, and settings details, via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentic
|
17-10-2018 - 21:40 | 23-09-2006 - 10:07 | |
| CVE-2007-2259 | 7.5 |
SQL injection vulnerability in forum.php in EsForum 3.0 allows remote attackers to execute arbitrary SQL commands via the idsalon parameter.
|
16-10-2018 - 16:42 | 25-04-2007 - 17:19 | |
| CVE-2008-0661 | 6.8 |
Buffer overflow in dBpowerAMP Audio Player Release 2 allows remote attackers to execute arbitrary code via a .M3U file with a long URI. NOTE: this might be the same issue as CVE-2004-1569.
|
15-10-2018 - 22:02 | 08-02-2008 - 02:00 | |
| CVE-2008-5191 | 7.5 |
Multiple SQL injection vulnerabilities in SePortal 2.4 allow remote attackers to execute arbitrary SQL commands via the (1) poll_id parameter to poll.php and the (2) sp_id parameter to staticpages.php.
|
29-09-2017 - 01:32 | 21-11-2008 - 17:30 |