| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1697 | 4.3 |
Cross-site scripting (XSS) vulnerability in Matt Wright Guestbook 2.3.1 allows remote attackers to execute arbitrary web script or HTML via the (1) Your Name, (2) E-Mail, or (3) Comments fields when posting a message.
|
18-10-2018 - 16:33 | 11-04-2006 - 10:02 | |
| CVE-2006-5161 | 6.4 |
IBM Client Security Password Manager stores and distributes saved passwords based upon the title of a website, which allows remote attackers to obtain username and password credentials by changing the title of an HTML page.
|
17-10-2018 - 21:41 | 05-10-2006 - 04:04 | |
| CVE-2007-2559 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in american cart 3.5 allow remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter to (1) index.php, (2) checkout.php, and (3) libsecure.php.
|
16-10-2018 - 16:44 | 09-05-2007 - 18:19 | |
| CVE-2008-0873 | 7.5 |
SQL injection vulnerability in index.php in the jlmZone Classifieds module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in an Adsview action.
|
15-10-2018 - 22:03 | 21-02-2008 - 19:44 | |
| CVE-2008-5315 | 7.8 |
Directory traversal vulnerability in the web interface in Apple iPhone Configuration Web Utility 1.0 on Windows allows remote attackers to read arbitrary files via unspecified vectors.
|
11-10-2018 - 20:54 | 03-12-2008 - 17:30 |