| Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1494 | 2.6 |
Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open_basedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function.
|
30-10-2018 - 16:25 | 10-04-2006 - 19:02 | |
| CVE-2006-5116 | 5.1 |
Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyAdmin before 2.9.1-rc1 allow remote attackers to perform unauthorized actions as another user by (1) directly setting a token in the URL though dynamic variable evaluation and (2) uns
|
17-10-2018 - 21:41 | 03-10-2006 - 04:03 | |
| CVE-2007-2547 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 allows remote attackers to inject arbitrary web script or HTML via the l parameter.
|
16-10-2018 - 16:44 | 09-05-2007 - 10:19 | |
| CVE-2007-2549 | 7.5 |
SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 allows remote attackers to execute arbitrary SQL commands via the (1) c or (2) quantity parameter.
|
16-10-2018 - 16:44 | 09-05-2007 - 10:19 | |
| CVE-2007-2548 | 6.4 |
Unspecified vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 has unknown impact and an l remote attack vector, related to "Cookie Manipulation."
|
16-10-2018 - 16:44 | 09-05-2007 - 10:19 | |
| CVE-2008-0853 | 7.5 |
SQL injection vulnerability in the com_detail component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. NOTE: this issue might be site-specific. If so, it should not be included in
|
15-10-2018 - 22:03 | 21-02-2008 - 00:44 | |
| CVE-2008-5310 | 7.5 |
SQL injection vulnerability in image.php in NetArt Media Car Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:32 | 02-12-2008 - 12:00 |