| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2010 | 7.5 |
Multiple SQL injection vulnerabilities in check_login.asp in Bloggage allow remote attackers to execute arbitrary SQL commands via the (1) acc_name and (2) password parameter.
|
18-10-2018 - 16:37 | 25-04-2006 - 12:50 | |
| CVE-2006-5418 | 6.8 |
PHP remote file inclusion vulnerability in archive/archive_topic.php in pbpbb archive for search engines (SearchIndexer) (aka phpBBSEI) for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
|
17-10-2018 - 21:42 | 20-10-2006 - 14:07 | |
| CVE-2007-2908 | 4.3 |
Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin before 3.6.6 allows remote attackers to inject arbitrary web script or HTML via the title field in a single add action.
|
16-10-2018 - 16:46 | 30-05-2007 - 10:30 | |
| CVE-2008-5570 | 6.8 |
Directory traversal vulnerability in index.php in PHP Multiple Newsletters 2.7, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
|
29-09-2017 - 01:32 | 15-12-2008 - 18:00 | |
| CVE-2008-5566 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Triangle Solutions PHP Multiple Newsletters 2.7 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
29-09-2017 - 01:32 | 15-12-2008 - 18:00 |