| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4094 | 7.5 |
PHP remote file inclusion vulnerability in library/authorize.php in IDevSpot PhpHostBot allows remote attackers to execute arbitrary PHP code via a URL in the login_form parameter, a different vector than CVE-2006-3776.
|
14-02-2024 - 01:17 | 30-07-2007 - 20:17 | |
| CVE-2006-2507 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing 0.2.0 through 0.7.0, as used with phpBB, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter in (1) index.php, (2) song.php, (3) faq.p
|
18-10-2018 - 16:40 | 22-05-2006 - 19:02 | |
| CVE-2006-6206 | 7.5 |
SQL injection vulnerability in item.asp in WarHound General Shopping Cart allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
|
17-10-2018 - 21:47 | 01-12-2006 - 01:28 | |
| CVE-2008-2642 | 7.5 |
SQL injection vulnerability in login.php in OtomiGenX 2.2 allows remote attackers to execute arbitrary SQL commands via the userAccount parameter (aka the User Name field) to index.php. NOTE: some of these details are obtained from third party infor
|
11-10-2018 - 20:42 | 10-06-2008 - 18:32 | |
| CVE-2008-5932 | 5.0 |
CodeAvalanche FreeForum stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for _private/CAForum.mdb. NOTE: some o
|
29-09-2017 - 01:32 | 21-01-2009 - 18:30 |