| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-5499 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in Serendipity (s9y) 1.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in the media manager administration page.
|
17-10-2018 - 21:43 | 25-10-2006 - 10:07 | |
| CVE-2007-3047 | 10.0 |
The Vonage VoIP Telephone Adapter has a default administrator username "user" and password "user," which allows remote attackers to obtain administrative access.
|
16-10-2018 - 16:47 | 05-06-2007 - 23:30 | |
| CVE-2008-1491 | 10.0 |
Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka ARC or ASMB3) 2.0.0.19 and 2.0.0.24 allows remote attackers to execute arbitrary code via a long string to TCP port 623.
|
11-10-2018 - 20:35 | 25-03-2008 - 19:44 | |
| CVE-2008-5650 | 7.5 |
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter.
|
29-09-2017 - 01:32 | 17-12-2008 - 18:30 | |
| CVE-2006-1914 | 5.0 |
DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid (1) fcategoryid parameter to topics.php or (2) unavariabile, (3) GLOBALS, or (4) _SERVER[] parameters to script.php. NOTE: this information leak might
|
20-07-2017 - 01:31 | 20-04-2006 - 18:06 | |
| CVE-2006-1916 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.
|
20-07-2017 - 01:31 | 20-04-2006 - 18:06 | |
| CVE-2006-1915 | 5.0 |
SQL injection vulnerability in topics.php in DbbS 2.0-alpha and earlier allows remote attackers to execute arbitrary SQL commands via the fcategoryid parameter.
|
05-09-2008 - 21:03 | 20-04-2006 - 18:06 |