| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2003-1532 | 7.5 |
SQL injection vulnerability in compte.php in PhpMyShop 1.00 allows remote attackers to execute arbitrary SQL commands via the (1) identifiant and (2) password parameters.
|
19-10-2018 - 15:29 | 31-12-2003 - 05:00 | |
| CVE-2009-4450 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in map.php in LiveZilla 3.1.8.3 allow remote attackers to inject arbitrary web script or HTML via the (1) lat, (2) lng, and (3) zom parameters, which are not properly handled when processed with tem
|
10-10-2018 - 19:49 | 29-12-2009 - 20:41 | |
| CVE-2007-6392 | 7.5 |
SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI.
|
29-09-2017 - 01:29 | 17-12-2007 - 18:46 | |
| CVE-2014-100001 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in the SEO Plugin LiveOptim plugin before 1.1.4-free for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors
|
08-09-2017 - 01:29 | 13-01-2015 - 11:59 | |
| CVE-2005-4209 | 4.3 |
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder,
|
20-07-2017 - 01:29 | 13-12-2005 - 11:03 | |
| CVE-2005-4266 | 7.5 |
WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a Session parameter that contains a randomly generated session ID that is associated with a username, which allows remote attackers to perform actions as other users by guessing or sniffin
|
05-09-2008 - 20:56 | 15-12-2005 - 11:03 |