| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-13031 | 6.8 |
DamiCMS v6.0.0 aand 6.1.0 allows CSRF via admin.php?s=/Admin/doadd to add an administrator account.
|
17-06-2021 - 19:15 | 05-07-2018 - 20:29 | |
| CVE-2008-0453 | 6.8 |
SQL injection vulnerability in list.php in Easysitenetwork Recipe allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
|
29-09-2017 - 01:30 | 25-01-2008 - 00:00 | |
| CVE-2013-3524 | 7.5 |
SQL injection vulnerability in popupnewsitem/ in the Pop Up News module 2.0 and possibly earlier for phpVMS allows remote attackers to execute arbitrary SQL commands via the itemid parameter. NOTE: this was originally reported as a problem in phpVMS
|
29-08-2017 - 01:33 | 10-05-2013 - 21:55 | |
| CVE-2010-3456 | 5.0 |
Directory traversal vulnerability in download.php in EnergyScripts (ES) Simple Download 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
|
17-08-2017 - 01:32 | 17-09-2010 - 20:00 |