| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1273 | 7.8 |
Mozilla Firefox 1.0.7 and 1.5.0.1 allows remote attackers to cause a denial of service (crash) via an HTML tag with a large number of script action handlers such as onload and onmouseover, which triggers the crash when the user views the page source.
|
07-08-2024 - 17:15 | 19-03-2006 - 11:06 | |
| CVE-2006-4850 | 5.1 |
PHP remote file inclusion vulnerability in system/_b/contentFiles/gBIndex.php in BolinOS 4.5.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the gBRootPath parameter. Successful exploitation requires that "register_gl
|
17-10-2018 - 21:39 | 19-09-2006 - 01:07 | |
| CVE-2007-2141 | 7.5 |
Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.
|
16-10-2018 - 16:42 | 19-04-2007 - 10:19 | |
| CVE-2008-0497 | 4.3 |
Cross-site scripting (XSS) vulnerability in action.php in Nucleus CMS 3.31 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO, which is not quoted when processing PHP_SELF.
|
15-10-2018 - 22:00 | 30-01-2008 - 22:00 | |
| CVE-2008-5070 | 7.5 |
SQL injection vulnerability in Pro Chat Rooms 3.0.3, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the gud parameter to (1) profiles/index.php and (2) profiles/admin.php. Patch Information (login req
|
29-09-2017 - 01:32 | 14-11-2008 - 18:07 |