| Max CVSS | 9.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-15877 | 9.0 |
The Plainview Activity Monitor plugin before 20180826 for WordPress is vulnerable to OS command injection via shell metacharacters in the ip parameter of a wp-admin/admin.php?page=plainview_activity_monitor&tab=activity_tools request.
|
02-02-2023 - 01:03 | 26-08-2018 - 07:29 | |
| CVE-2008-1426 | 7.5 |
SQL injection vulnerability in album.asp in KAPhotoservice allows remote attackers to execute arbitrary SQL commands via the albumid parameter.
|
11-10-2018 - 20:33 | 20-03-2008 - 18:44 | |
| CVE-2014-8469 | 4.3 |
Cross-site scripting (XSS) vulnerability in Guests/Boots in AdminCP in Moxi9 PHPFox before 4 Beta allows remote attackers to inject arbitrary web script or HTML via the User-Agent header.
|
08-09-2017 - 01:29 | 21-11-2014 - 15:59 |