| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-1287 | 7.5 |
Multiple SQL injection vulnerabilities in BK Forum 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to member.asp, (2) forum parameter to forum.asp, or (3) various parameters in register.asp.
|
19-10-2018 - 15:31 | 23-04-2005 - 04:00 | |
| CVE-2014-2341 | 6.8 |
Session fixation vulnerability in CubeCart before 5.2.9 allows remote attackers to hijack web sessions via the PHPSESSID parameter.
|
29-08-2017 - 01:34 | 22-04-2014 - 13:06 | |
| CVE-2003-1285 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (2) testcgi.exe, (3) environ.pl, (4) the query paramet
|
11-07-2017 - 01:29 | 31-12-2003 - 05:00 | |
| CVE-2007-3600 | 4.0 |
WordPlugin in the wordintegration component in vtiger CRM before 5.0.3 allows remote authenticated users to bypass field level security permissions and merge arbitrary fields in an Email template, as demonstrated by the fields in the Contact module.
|
15-11-2008 - 06:53 | 06-07-2007 - 19:30 |