| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-1508 | 7.5 |
SQL injection vulnerability in EfesTech E-Kontör and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
10-02-2020 - 21:14 | 25-03-2008 - 23:44 | |
| CVE-2006-1941 | 5.0 |
Neon Responder 5.4 for LANsurveyor allows remote attackers to cause a denial of service (application outage) via a crafted Clock Synchronisation packet that triggers an access violation.
|
18-10-2018 - 16:37 | 20-04-2006 - 22:02 | |
| CVE-2006-5516 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in actions/usersettings.php in WikiNi before 0.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) email parameters to wakka.php.
|
17-10-2018 - 21:43 | 26-10-2006 - 16:07 | |
| CVE-2007-3083 | 7.8 |
Z-Blog 1.7 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for zblog.mdb.
|
16-10-2018 - 16:47 | 06-06-2007 - 10:30 | |
| CVE-2008-5640 | 7.5 |
SQL injection vulnerability in bidhistory.asp in Active Bids 3.5 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
|
29-09-2017 - 01:32 | 17-12-2008 - 17:30 |