Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-5088 | 7.5 |
PHP remote file inclusion vulnerability in connected_users.lib.php3 in phpHeaven phpMyChat 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the ChatPath parameter.
|
14-02-2024 - 01:17 | 29-09-2006 - 20:07 | |
CVE-2007-2292 | 4.3 |
CRLF injection vulnerability in the Digest Authentication support for Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allows remote attackers to conduct HTTP request splitting attacks via LF (%0a) bytes in the username attribute.
|
23-07-2021 - 15:05 | 26-04-2007 - 20:19 | |
CVE-2007-2291 | 7.5 |
CRLF injection vulnerability in the Digest Authentication support for Microsoft Internet Explorer 7.0.5730.11 allows remote attackers to conduct HTTP response splitting attacks via a LF (%0a) in the username attribute.
|
23-07-2021 - 15:05 | 26-04-2007 - 20:19 | |
CVE-2006-1557 | 7.5 |
Multiple SQL injection vulnerabilities in X-Changer 0.2 allow remote attackers to execute arbitrary SQL commands via the (1) from and (2) into parameters in a calculate action, and the (3) id parameter in an edit action to index.php.
|
18-10-2018 - 16:33 | 31-03-2006 - 11:06 | |
CVE-2008-5267 | 6.8 |
SQL injection vulnerability in answer.php in Experts 1.0.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the question_id parameter.
|
29-09-2017 - 01:32 | 28-11-2008 - 19:00 | |
CVE-2003-1544 | 6.8 |
Unrestricted critical resource lock in Terminal Services for Windows 2000 before SP4 and Windows XP allows remote authenticated users to cause a denial of service (reboot) by obtaining a read lock on msgina.dll, which prevents msgina.dll from being l
|
08-08-2017 - 01:29 | 31-12-2003 - 05:00 |