| Max CVSS | 9.3 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2051 | 5.8 |
Multiple cross-site scripting (XSS) vulnerabilities in myadmin/index.php in NextAge Shopping Cart allow remote attackers to inject arbitrary web script or HTML via the (1) username and (2) password parameters.
|
18-10-2018 - 16:37 | 26-04-2006 - 20:06 | |
| CVE-2006-5566 | 5.0 |
CRLF injection vulnerability in premium/index.php in Shop-Script allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the (1) links_exchange, (2) news, (3) search_with_change_categ
|
17-10-2018 - 21:43 | 27-10-2006 - 16:07 | |
| CVE-2007-3201 | 7.1 |
Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied
|
16-10-2018 - 16:47 | 12-06-2007 - 23:30 | |
| CVE-2008-5679 | 9.3 |
The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption.
|
11-10-2018 - 20:56 | 19-12-2008 - 16:30 | |
| CVE-2008-1641 | 7.5 |
SQL injection vulnerability in default.asp in EfesTECH Video 5.0 allows remote attackers to execute arbitrary SQL commands via the catID parameter.
|
11-10-2018 - 20:35 | 02-04-2008 - 17:44 |