| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-0703 | 4.3 |
Unspecified vulnerability in index.php in imageVue 16.1 has unknown impact, probably a cross-site scripting (XSS) vulnerability involving the query string that is not quoted when inserted into style and body tags, as demonstrated using a bgcol parame
|
19-10-2018 - 15:45 | 15-02-2006 - 11:06 | |
| CVE-2006-0700 | 5.0 |
imageVue 16.1 allows remote attackers to obtain folder permission settings via a direct request to dir.php, which returns an XML document that lists folders and their permissions.
|
20-07-2017 - 01:29 | 15-02-2006 - 11:06 | |
| CVE-2006-0701 | 5.0 |
readfolder.php in imageVue 16.1 allows remote attackers to list directories via modified path and ext parameters.
|
20-07-2017 - 01:29 | 15-02-2006 - 11:06 | |
| CVE-2006-0702 | 5.0 |
admin/upload.php in imageVue 16.1 allows remote attackers to upload arbitrary files to certain allowed folders via .. (dot dot) sequences in the path parameter. NOTE: due to the lack of details, the specific vulnerability type cannot be determined,
|
20-07-2017 - 01:29 | 15-02-2006 - 11:06 |