| Max CVSS | 6.8 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1420 | 5.0 |
SQL injection vulnerability in print.php in SaphpLesson 2.0 allows remote attackers to execute arbitrary SQL commands via the lessid parameter.
|
18-10-2018 - 16:32 | 28-03-2006 - 20:02 | |
| CVE-2006-4976 | 5.0 |
The Date Library in John Lim ADOdb Library for PHP allows remote attackers to obtain sensitive information via a direct request for (1) server.php, (2) adodb-errorpear.inc.php, (3) adodb-iterator.inc.php, (4) adodb-pear.inc.php, (5) adodb-perf.inc.ph
|
17-10-2018 - 21:40 | 25-09-2006 - 01:07 | |
| CVE-2007-2265 | 6.8 |
Cross-site scripting (XSS) vulnerability in YA Book 0.98-alpha allows remote attackers to inject arbitrary web script or HTML via the City field in a sign action in index.php.
|
16-10-2018 - 16:42 | 25-04-2007 - 20:19 | |
| CVE-2008-0703 | 5.0 |
Multiple directory traversal vulnerabilities in sflog! 0.96 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) permalink or (2) section parameter to index.php, possibly involving includes/entries.inc.php and other files incl
|
15-10-2018 - 22:02 | 12-02-2008 - 01:00 | |
| CVE-2008-5211 | 2.6 |
Cross-site scripting (XSS) vulnerability in search.php in Sphider 1.3.4, when the search suggestion feature is enabled, allows remote attackers to inject arbitrary web script or HTML via the query parameter, a different vector than CVE-2006-2506.
|
11-10-2018 - 20:54 | 24-11-2008 - 17:30 |