| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-0034 | 7.5 |
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code v
|
30-04-2019 - 14:27 | 10-05-2006 - 02:14 | |
| CVE-2006-5900 | 6.8 |
Cross-site scripting (XSS) vulnerability in the incubator/tests/Zend/Http/_files/testRedirections.php sample code in Zend Framework Preview 0.2.0 allows remote attackers to inject arbitrary web script or HTML via arbitrary parameters.
|
17-10-2018 - 21:45 | 15-11-2006 - 15:07 | |
| CVE-2007-3621 | 7.5 |
Multiple CRLF injection vulnerabilities in callboth.php in AsteriDex 3.0 and earlier allow remote attackers to inject arbitrary shell commands via the (1) IN and (2) OUT parameters.
|
15-10-2018 - 21:29 | 09-07-2007 - 16:30 | |
| CVE-2008-2117 | 4.3 |
Cross-site scripting (XSS) vulnerability in pages/news.page.inc in Project Alumni 1.0.9 allows remote attackers to inject arbitrary web script or HTML via the year parameter in a news action to index.php, a different vector than CVE-2007-6126.
|
11-10-2018 - 20:39 | 08-05-2008 - 16:20 | |
| CVE-2008-2118 | 7.5 |
SQL injection vulnerability in info.php in Project Alumni 1.0.9 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
11-10-2018 - 20:39 | 08-05-2008 - 16:20 | |
| CVE-2008-5820 | 7.5 |
SQL injection vulnerability in eDNews_view.php in eDreamers eDNews 2 allows remote attackers to execute arbitrary SQL commands via the newsid parameter.
|
29-09-2017 - 01:32 | 02-01-2009 - 18:11 |