| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4863 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in Marc Cagninacci mcLinksCounter 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the langfile parameter in (1) login.php, (2) stats.php, (3) detail.php, or (4) erase.php. NOTE
|
11-04-2024 - 00:40 | 19-09-2006 - 18:07 | |
| CVE-2007-4478 | 4.3 |
Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6.0 and 7 allows user-assisted remote attackers to inject arbitrary web script or HTML in the local zone via a URI, when the document at the associated URL is saved to a local fi
|
23-07-2021 - 12:55 | 22-08-2007 - 23:17 | |
| CVE-2005-4053 | 4.3 |
Cross-site scripting (XSS) vulnerability in coWiki 0.3.4 allows remote attackers to inject arbitrary web script or HTML via the q parameter, as demonstrated using 26.html.
|
19-10-2018 - 15:40 | 07-12-2005 - 11:03 | |
| CVE-2006-1151 | 5.0 |
Cross-site scripting vulnerability in index.php in M-Phorum 0.2 allows remote attackers to inject arbitrary web script or HTML via the go parameter.
|
18-10-2018 - 16:31 | 10-03-2006 - 11:02 | |
| CVE-2007-2428 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in page.php in Ahhp-Portal allow remote attackers to execute arbitrary PHP code via a URL in the (1) fp or (2) sc parameter.
|
16-10-2018 - 16:43 | 02-05-2007 - 00:19 | |
| CVE-2007-4485 | 6.8 |
PHP remote file inclusion vulnerability in visitor.php in Butterfly online visitors counter 1.08, when used with certain older versions of PHP with improper SERVER superglobal handling, allows remote attackers to execute arbitrary PHP code via a URL
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4484 | 7.5 |
PHP remote file inclusion vulnerability in login.php in My_REFERER 1.08 allows remote attackers to execute arbitrary PHP code via a URL in the value parameter.
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4482 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in the Pool 1.0.7 theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4481 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in the (1) Blix 0.9.1 and (2) Blix 0.9.1 Rus themes for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4480 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in the Sirius 1.0 theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4479 | 4.3 |
Cross-site scripting (XSS) vulnerability in search.html in Search Engine Builder allows remote attackers to inject arbitrary web script or HTML via the searWords parameter.
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4477 | 5.0 |
The administration interface in the Planet VC-200M VDSL2 router allows remote attackers to cause a denial of service (administration interface outage) via an HTTP request without a Host header.
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4486 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in index.php in Linkliste 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) styl[top], (2) url_eintrag, or (3) styl[themen] parameter.
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 | |
| CVE-2007-4483 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in the WordPress Classic 1.5 theme in WordPress before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
|
15-10-2018 - 21:35 | 22-08-2007 - 23:17 |