| Max CVSS | 7.5 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2491 | 6.8 |
Cross-site scripting (XSS) vulnerability in (1) index.php and (2) bmc/admin.php in BoastMachine (bMachine) 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly filtered when it is
|
18-10-2018 - 16:40 | 19-05-2006 - 23:02 | |
| CVE-2006-6169 | 6.8 |
Heap-based buffer overflow in the ask_outfile_name function in openfile.c for GnuPG (gpg) 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages with "C-escape" expansions, which cause the make_printable
|
17-10-2018 - 21:47 | 29-11-2006 - 18:28 | |
| CVE-2007-4028 | 7.5 |
Absolute path traversal vulnerability in index.php in Webspell 4.01.02 allows remote attackers to include and execute arbitrary local files via a full pathname in the site parameter. NOTE: some of these details are obtained from third party informat
|
15-10-2018 - 21:32 | 26-07-2007 - 19:30 | |
| CVE-2008-2572 | 7.5 |
SQL injection vulnerability in php/leer_comentarios.php in FlashBlog allows remote attackers to execute arbitrary SQL commands via the articulo_id parameter.
|
11-10-2018 - 20:41 | 06-06-2008 - 18:32 | |
| CVE-2008-5927 | 7.5 |
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPNews 0.0.6 allow remote attackers to execute arbitrary SQL commands via the (1) checkuser parameter (aka username field) or (2) checkpass parameter (aka password field) to admin/
|
29-09-2017 - 01:32 | 21-01-2009 - 18:30 |