| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2003-1553 | 4.3 |
Haakon Nilsen Simple Internet Publishing System (SIPS) 0.2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password and other user information via a direct request to a user-
|
19-10-2018 - 15:29 | 31-12-2003 - 05:00 | |
| CVE-2006-1993 | 5.1 |
Mozilla Firefox 1.5.0.2, when designMode is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain Javascript that is not properly handled by the contentWindow.focus method in an iframe, which ca
|
18-10-2018 - 16:37 | 25-04-2006 - 12:50 | |
| CVE-2006-5535 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in WebHostManager (WHM) 10.8.0 cPanel 10.9.0 R50 allow remote attackers to inject arbitrary web script or HTML via the (1) theme parameter to scripts/dosetmytheme and the (2) template parameter to s
|
17-10-2018 - 21:43 | 26-10-2006 - 17:07 | |
| CVE-2007-3061 | 7.8 |
Cactushop 6 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) cactushop6.mdb or (2) cactushop5.mdb.
|
16-10-2018 - 16:47 | 06-06-2007 - 01:30 | |
| CVE-2008-5630 | 6.8 |
SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 3 and 3.1.4 allows remote attackers to execute arbitrary SQL commands via the umprof_status parameter.
|
29-09-2017 - 01:32 | 17-12-2008 - 17:30 |