| Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2653 | 2.6 |
Cross-site scripting (XSS) vulnerability in login_error.shtml for D-Link DSA-3100 allows remote attackers to inject arbitrary HTML or web script via an encoded uname parameter.
|
18-10-2018 - 16:41 | 30-05-2006 - 10:02 | |
| CVE-2006-6112 | 5.0 |
LifeType 1.0.x and 1.1.x have insufficient access control for all of the PHP scripts under (1) class/ and (2) plugins/, which allows remote attackers to obtain the installation path via a direct request to any of the scripts, as demonstrated by (a) b
|
17-10-2018 - 21:46 | 06-12-2006 - 22:28 | |
| CVE-2007-4245 | 4.3 |
Cross-site scripting (XSS) vulnerability in Search.php in DiMeMa CONTENTdm (CDM) allows remote attackers to inject arbitrary web script or HTML via a search, probably related to the CISOBOX1 parameter to results.php in CDM 4.2.
|
15-10-2018 - 21:34 | 08-08-2007 - 23:17 | |
| CVE-2008-3119 | 7.5 |
SQL injection vulnerability in index.php in DreamPics Builder allows remote attackers to execute arbitrary SQL commands via the page parameter.
|
29-09-2017 - 01:31 | 10-07-2008 - 18:41 |