| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-6205 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in result.asp in Enthrallweb eHomes allow remote attackers to inject arbitrary web script or HTML via the (1) city or (2) State parameter.
|
14-02-2024 - 01:17 | 01-12-2006 - 01:28 | |
| CVE-2006-6204 | 7.5 |
Multiple SQL injection vulnerabilities in Enthrallweb eHomes allow remote attackers to execute arbitrary SQL commands via the (1) cid parameter to (a) dircat.asp; the (2) sid parameter to (b) dirSub.asp; the (3) TYPE_ID parameter to (c) types.asp; th
|
14-02-2024 - 01:17 | 01-12-2006 - 01:28 | |
| CVE-2009-0026 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Apache Jackrabbit before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.jsp or (2) swr.jsp.
|
13-02-2023 - 02:19 | 21-01-2009 - 20:30 | |
| CVE-2006-2548 | 7.5 |
Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast (url attribute of an enclosure tag, or $enc_url variable), which is executed when running wget.
|
18-10-2018 - 16:40 | 23-05-2006 - 10:06 | |
| CVE-2007-4102 | 4.3 |
Cross-site scripting (XSS) vulnerability in search.php for sBlog 0.7.3 Beta allows remote attackers to inject arbitrary HTML and web script via a leading '"/></> sequence in the search string.
|
15-10-2018 - 21:33 | 31-07-2007 - 10:17 | |
| CVE-2008-2666 | 5.0 |
Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safe_mode restrictions by creating a subdirectory named http: and then placing ../ (dot dot slash) sequences in an http URL argument to
|
11-10-2018 - 20:42 | 20-06-2008 - 01:41 |