| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1334 | 6.4 |
Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.
|
18-10-2018 - 16:32 | 21-03-2006 - 01:06 | |
| CVE-2006-5027 | 5.0 |
Jeroen Vennegoor JevonCMS, possibly pre alpha, allows remote attackers to obtain sensitive information via a direct request for php/main/phplib files (1) db_msql.inc, (2) db_mssql.inc, (3) db_mysql.inc, (4) db_oci8.inc, (5) db_odbc.inc, (6) db_oracle
|
17-10-2018 - 21:40 | 27-09-2006 - 23:07 | |
| CVE-2007-2330 | 7.5 |
PHP remote file inclusion vulnerability in includes_handler.php in DynaTracker 151 allows remote attackers to execute arbitrary PHP code via a URL in the base_path parameter.
|
16-10-2018 - 16:43 | 27-04-2007 - 00:19 | |
| CVE-2008-0002 | 5.8 |
Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting dur
|
15-10-2018 - 21:56 | 12-02-2008 - 01:00 | |
| CVE-2008-5225 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Xerox DocuShare 6 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) SearchResults/ and (2) Services/ in dsdn/dsweb/, and (3)
|
11-10-2018 - 20:54 | 25-11-2008 - 19:30 |