| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-1972 | 7.5 |
PatrolAgent.exe in BMC Performance Manager does not require authentication for requests to modify configuration files, which allows remote attackers to execute arbitrary code via a request on TCP port 3181 for modification of the masterAgentName and
|
07-08-2024 - 13:15 | 22-04-2007 - 19:19 | |
| CVE-2006-1293 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Contrexx CMS 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string (PHP_SELF).
|
18-10-2018 - 16:31 | 19-03-2006 - 23:02 | |
| CVE-2006-4857 | 7.5 |
SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) form_codeword (aka the Password field) parameters.
|
17-10-2018 - 21:39 | 19-09-2006 - 18:07 | |
| CVE-2008-0525 | 4.6 |
PatchLink Update client for Unix, as used by Novell ZENworks Patch Management Update Agent for Linux/Unix/Mac (LUM) 6.2094 through 6.4102 and other products, allows local users to (1) truncate arbitrary files via a symlink attack on the /tmp/patchlin
|
15-10-2018 - 22:00 | 31-01-2008 - 20:00 | |
| CVE-2008-5088 | 7.5 |
Multiple SQL injection vulnerabilities in PHPKB Knowledge Base Software 1.5 Professional allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) email.php and (2) question.php, a different vector than CVE-2008-1909.
|
29-09-2017 - 01:32 | 14-11-2008 - 19:20 |