| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1895 | 6.5 |
Direct static code injection vulnerability in includes/template.php in phpBB allows remote authenticated users with write access to execute arbitrary PHP code by modifying a template in a way that (1) bypasses a loose ".*" regular expression to match
|
18-10-2018 - 16:37 | 20-04-2006 - 10:02 | |
| CVE-2006-5496 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Timothy Claason KnowledgeBank 1.01 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) index.php, (2) addknowledge.php, and (3) addscreenshot.php.
|
17-10-2018 - 21:43 | 25-10-2006 - 10:07 | |
| CVE-2007-3003 | 7.5 |
Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-20
|
16-10-2018 - 16:46 | 04-06-2007 - 17:30 | |
| CVE-2008-5558 | 4.3 |
Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition B.2.3.5 through B.2.5.5, when realtime IAX2 users are enabled, allows remote attackers to cause a denial of service (crash) via authentication attempts involving (1) an unknown user or
|
11-10-2018 - 20:56 | 17-12-2008 - 17:30 | |
| CVE-2008-1482 | 6.8 |
Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted
|
11-10-2018 - 20:34 | 24-03-2008 - 22:44 |