| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-0746 | 7.5 |
Certain patches for kpdf do not include all relevant patches from xpdf that were associated with CVE-2005-3627, which allows context-dependent attackers to exploit vulnerabilities that were present in CVE-2005-3627.
|
19-10-2018 - 15:46 | 09-03-2006 - 00:02 | |
| CVE-2006-4748 | 7.5 |
Multiple SQL injection vulnerabilities in F-ART BLOG:CMS 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) xagent, (2) xpath, (3) xreferer, and (4) xdns parameters in (a) admin/plugins/NP_Log.php, and the (5) pitem parameter in
|
17-10-2018 - 21:39 | 13-09-2006 - 22:07 | |
| CVE-2007-2019 | 7.5 |
PHP remote file inclusion vulnerability in init.gallery.php in phpGalleryScript 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the include_class parameter.
|
16-10-2018 - 16:41 | 12-04-2007 - 19:19 | |
| CVE-2008-0403 | 5.5 |
The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication for SaveCfgFile.cgi, which allows remote attackers to read and modify configuration via a direct request to SaveCfgFile.cgi.
|
15-10-2018 - 21:59 | 23-01-2008 - 12:00 | |
| CVE-2008-4931 | 4.3 |
Cross-site scripting (XSS) vulnerability in the account module in firmCHANNEL Digital Signage 3.24, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php.
|
11-10-2018 - 20:53 | 05-11-2008 - 15:00 |