Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-1971 | 4.3 |
Cross-site scripting (XSS) vulnerability in login.php in KRANKIKOM ContentBoxX allows remote attackers to inject arbitrary web script or HTML via the action parameter.
|
18-10-2018 - 16:37 | 21-04-2006 - 10:02 | |
CVE-2006-5387 | 7.5 |
PHP remote file inclusion vulnerability in mods/iai/includes/constants.php in the PlusXL 20_272 and earlier phpBB module allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
|
17-10-2018 - 21:42 | 18-10-2006 - 19:07 | |
CVE-2007-0693 | 6.8 |
SQL injection vulnerability in news.php in DGNews 2.1 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a newslist action. NOTE: this issue can produce resultant cross-site scripting (XSS).
|
16-10-2018 - 16:33 | 30-05-2007 - 20:30 | |
CVE-2008-1324 | 7.5 |
Multiple directory traversal vulnerabilities in index.php in Travelsized CMS 0.4.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page_id and (2) language parameters. NOTE: this might be the same is
|
11-10-2018 - 20:31 | 13-03-2008 - 14:44 | |
CVE-2008-5588 | 7.5 |
SQL injection vulnerability in rankup.asp in Katy Whitton RankEm allows remote attackers to execute arbitrary SQL commands via the siteID parameter.
|
29-09-2017 - 01:32 | 16-12-2008 - 19:07 |