| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-0820 | 4.3 |
Cross-site scripting (XSS) vulnerability in Dwarf HTTP Server 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified error messages.
|
18-10-2018 - 16:29 | 13-03-2006 - 19:34 | |
| CVE-2007-3066 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in php(Reactor) 1.2.7 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the pathtohomedir parameter to (1) view.inc.php, (2) users.inc.php, (3) updatecms.inc.php, and (4)
|
16-10-2018 - 16:47 | 06-06-2007 - 01:30 | |
| CVE-2007-3088 | 7.5 |
SQL injection vulnerability in index.php in Comicsense allows remote attackers to execute arbitrary SQL commands via the epi parameter.
|
16-10-2018 - 16:47 | 06-06-2007 - 10:30 | |
| CVE-2007-3158 | 5.0 |
download_script.asp in ASP Folder Gallery allows remote attackers to read arbitrary files via a filename in the file parameter.
|
16-10-2018 - 16:47 | 11-06-2007 - 22:30 | |
| CVE-2007-3055 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Codelib Linker 2.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
|
16-10-2018 - 16:47 | 06-06-2007 - 01:30 | |
| CVE-2007-3060 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in PHP Live! 3.2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) sid parameter to (a) chat.php, (2) LANG[DEFAULT_BRANDING] and (3) PHPLIVE_VERSION parameters to (b) help.
|
16-10-2018 - 16:47 | 06-06-2007 - 01:30 | |
| CVE-2007-2991 | 4.3 |
Cross-site scripting (XSS) vulnerability in includes/send.inc.php in Evenzia CMS allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
16-10-2018 - 16:46 | 04-06-2007 - 16:30 | |
| CVE-2007-5802 | 7.5 |
Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: this can be leveraged to obta
|
15-10-2018 - 21:46 | 03-11-2007 - 00:46 | |
| CVE-2014-8655 | 5.0 |
The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData coo
|
08-09-2017 - 01:29 | 06-11-2014 - 15:55 | |
| CVE-2010-1710 | 6.8 |
Directory traversal vulnerability in login.php in Siestta 2.0, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the idioma parameter.
|
17-08-2017 - 01:32 | 04-05-2010 - 16:00 | |
| CVE-2003-1208 | 10.0 |
Multiple buffer overflows in Oracle 9i 9 before 9.2.0.3 allow local users to execute arbitrary code by (1) setting the TIME_ZONE session parameter to a long value, or providing long parameters to the (2) NUMTOYMINTERVAL, (3) NUMTODSINTERVAL or (4) FR
|
11-07-2017 - 01:29 | 03-12-2004 - 05:00 |