| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1890 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in myWebland myEvent 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the myevent_path parameter in (1) event.php and (2) initialize.php. NOTE: vector 2 was later reported to af
|
18-10-2018 - 16:37 | 20-04-2006 - 10:02 | |
| CVE-2006-5210 | 5.0 |
Directory traversal vulnerability in IronWebMail before 6.1.1 HotFix-17 allows remote attackers to read arbitrary files via a GET request to the IM_FILE identifier with double-url-encoded "../" sequences ("%252e%252e/"). This vulnerability is address
|
17-10-2018 - 21:41 | 16-10-2006 - 23:07 | |
| CVE-2007-2782 | 7.5 |
Packeteer PacketShaper uses fixed increments in TCP initial sequence number (ISN) values, which allows remote attackers to predict the ISN value, and perform session hijacking or disruption.
|
16-10-2018 - 16:45 | 21-05-2007 - 23:30 | |
| CVE-2008-1284 | 6.0 |
Directory traversal vulnerability in Horde 3.1.6, Groupware before 1.0.5, and Groupware Webmail Edition before 1.0.6, when running with certain configurations, allows remote authenticated users to read and execute arbitrary files via ".." sequences a
|
11-10-2018 - 20:31 | 11-03-2008 - 00:44 | |
| CVE-2008-5561 | 7.5 |
SQL injection vulnerability in Netref 4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) fiche_product.php and (2) presentation.php.
|
29-09-2017 - 01:32 | 15-12-2008 - 18:00 |