| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2033 | 6.4 |
PHP remote file inclusion vulnerability in Core CoreNews 2.0.1 and earlier allows remote authenticated users to execute arbitrary commands via the show parameter. NOTE: this is a different vector than CVE-2006-1212, although it might be the same pri
|
18-10-2018 - 16:37 | 26-04-2006 - 00:06 | |
| CVE-2006-2032 | 6.4 |
Multiple SQL injection vulnerabilities in Core CoreNews 2.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) icon_id and (2) userid parameters in preview.php.
|
18-10-2018 - 16:37 | 26-04-2006 - 00:06 | |
| CVE-2006-5609 | 5.0 |
Directory traversal vulnerability in dir.php in TorrentFlux 2.1 allows remote attackers to list arbitrary directories via "\.\./" sequences in the dir parameter.
|
17-10-2018 - 21:43 | 30-10-2006 - 23:07 | |
| CVE-2007-3198 | 4.3 |
Cross-site scripting (XSS) vulnerability in comments.php in Maran PHP Blog (Maran Blog), possibly only versions before 20070610, allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
16-10-2018 - 16:47 | 12-06-2007 - 23:30 | |
| CVE-2008-0555 | 7.5 |
The ExpandCert function in Apache-SSL before apache_1.3.41+ssl_1.59 does not properly handle (1) '/' and (2) '=' characters in a Distinguished Name (DN) in a client certificate, which might allow remote attackers to bypass authentication via a crafte
|
15-10-2018 - 22:01 | 04-04-2008 - 00:44 | |
| CVE-2008-5697 | 4.3 |
The skype_tool.copy_num method in the Skype extension BETA 2.2.0.95 for Firefox allows remote attackers to write arbitrary data to the clipboard via a string argument.
|
29-09-2017 - 01:32 | 22-12-2008 - 15:30 |