| Max CVSS | 9.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2005 | 7.5 |
Eval injection vulnerability in index.php in ClanSys 1.1 allows remote attackers to execute arbitrary PHP code via PHP code in the page parameter, as demonstrated by using an "include" statement that is injected into the eval statement. NOTE: this i
|
18-10-2018 - 16:37 | 25-04-2006 - 12:50 | |
| CVE-2006-5560 | 4.3 |
Cross-site scripting (XSS) vulnerability in heading.php in Boesch ProgSys 0.151 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php, and unspecified vectors related to certain other files.
|
17-10-2018 - 21:43 | 27-10-2006 - 16:07 | |
| CVE-2007-3133 | 6.8 |
SQL injection vulnerability in urunbak.asp in W1L3D4 WEBmarket 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
16-10-2018 - 16:47 | 08-06-2007 - 16:30 | |
| CVE-2008-1534 | 7.5 |
Multiple directory traversal vulnerabilities in PowerPHPBoard 1.00b allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) settings[footer] parameter to footer.inc.php and the (2) settings[header] parameter
|
11-10-2018 - 20:35 | 28-03-2008 - 18:44 | |
| CVE-2008-5663 | 9.0 |
Multiple unrestricted file upload vulnerabilities in Kusaba 1.0.4 and earlier allow remote authenticated users to execute arbitrary code by uploading a file with an executable extension using (1) load_receiver.php or (2) a shipainter action to paint_
|
29-09-2017 - 01:32 | 19-12-2008 - 01:51 |