| Max CVSS | 10.0 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4858 | 6.8 |
PHP remote file inclusion vulnerability in install.serverstat.php in the Serverstat (com_serverstat) 0.4.4 and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
|
17-10-2018 - 21:39 | 19-09-2006 - 18:07 | |
| CVE-2007-2136 | 7.5 |
Stack-based buffer overflow in bgs_sdservice.exe in BMC Patrol PerformAgent allows remote attackers to execute arbitrary code by connecting to TCP port 10128 and sending certain XDR data, which is not properly parsed.
|
16-10-2018 - 16:42 | 22-04-2007 - 19:19 | |
| CVE-2008-0487 | 7.5 |
Multiple SQL injection vulnerabilities in login.asp in ASPired2Protect allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters. NOTE: some of these details are obtained from third party information.
|
15-10-2018 - 22:00 | 30-01-2008 - 22:00 | |
| CVE-2008-5090 | 10.0 |
Electron Inc. Advanced Electron Forum before 1.0.7 allows remote attackers to execute arbitrary PHP code via PHP code embedded in bbcode in the email parameter, which is processed by the preg_replace function with the eval switch.
|
11-10-2018 - 20:54 | 14-11-2008 - 19:20 | |
| CVE-2006-1324 | 6.8 |
Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.
|
20-07-2017 - 01:30 | 21-03-2006 - 01:06 |