| Max CVSS | 7.5 | Min CVSS | 3.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4625 | 3.6 |
PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safe_mode and open_basedir, via the ini_restore function, which resets the values to their php.ini (Master Value) defaults.
|
30-10-2018 - 16:25 | 12-09-2006 - 16:07 | |
| CVE-2006-1662 | 7.5 |
The frontpage option in Limbo CMS 1.0.4.2 and 1.0.4.1 allows remote attackers to execute arbitrary PHP commands via the Itemid parameter in index.php.
|
18-10-2018 - 16:33 | 07-04-2006 - 10:04 | |
| CVE-2007-6676 | 5.0 |
The default configuration of Uber Uploader (UU) 5.3.6 and earlier does not block uploads of (1) .html, (2) .asp, and other possibly dangerous extensions, which allows remote attackers to use these extensions in uploads via (a) uu_file_upload.php, rel
|
15-10-2018 - 21:56 | 08-01-2008 - 19:46 | |
| CVE-2008-4760 | 6.8 |
SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:32 | 28-10-2008 - 02:00 | |
| CVE-2010-5031 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in fileNice 1.1 allows remote attackers to inject arbitrary web script or HTML via the sstring parameter (aka the Search Box). NOTE: some of these details are obtained from third party informatio
|
14-02-2012 - 04:02 | 02-11-2011 - 21:55 |