| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2281 | 7.5 |
X-Scripts X-Poll (xpoll) 2.30 allows remote attackers to execute arbitrary PHP code by using admin/images/add.php to upload a PHP file, then access it.
|
18-10-2018 - 16:38 | 10-05-2006 - 02:14 | |
| CVE-2006-5934 | 7.5 |
SQL injection vulnerability in admin/default.asp in Estate Agent Manager 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the UserName field.
|
17-10-2018 - 21:46 | 16-11-2006 - 00:07 | |
| CVE-2007-3656 | 6.8 |
Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not perform a security zone check when processing a wyciwyg URI, which allows remote attackers to obtain sensitive information, poison the browser cache, and possibly enable further atta
|
15-10-2018 - 21:29 | 10-07-2007 - 19:30 | |
| CVE-2008-5853 | 5.0 |
Chilek Content Management System (aka ChiCoMaS) 2.0.4 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain database credentials via a direct request for config.inc o
|
11-10-2018 - 20:56 | 06-01-2009 - 17:30 | |
| CVE-2008-2268 | 4.3 |
Open redirect vulnerability in interface/redirect.htm.php in Mjguest 6.7 GT Rev.01 allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the goto parameter in a redirect action to mjg
|
11-10-2018 - 20:40 | 16-05-2008 - 12:54 | |
| CVE-2008-2187 | 4.3 |
Cross-site scripting (XSS) vulnerability in mjguest.php in Mjguest 6.7 GT Rev.01 allows remote attackers to inject arbitrary web script or HTML via the level parameter in a redirect action, possibly involving interface/redirect.htm.php.
|
11-10-2018 - 20:39 | 13-05-2008 - 22:20 |