| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4120 | 9.3 |
Multiple PHP remote file inclusion vulnerabilities in Jelsoft vBulletin 3.6.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) classfile parameter to includes/functions.php, the (2) nextitem parameter to includes/functions_cr
|
17-05-2024 - 00:35 | 01-08-2007 - 16:17 | |
| CVE-2006-2547 | 10.0 |
Unspecified vulnerability in the sapdba command in SAP with Informix before 700, and 700 up to patch 100, allows local users to execute arbitrary commands via unknown vectors related to "insecure environment variable" handling.
|
18-10-2018 - 16:40 | 23-05-2006 - 10:06 | |
| CVE-2006-6196 | 6.8 |
Cross-site scripting (XSS) vulnerability in the search functionality in Fixit iDMS Pro Image Gallery allows remote attackers to inject arbitrary web script or HTML via a search field (txtsearchtext parameter).
|
17-10-2018 - 21:47 | 01-12-2006 - 00:28 | |
| CVE-2009-0246 | 9.3 |
Stack-based buffer overflow in easyHDR PRO 1.60.2 allows user-assisted attackers to execute arbitrary code via an invalid Radiance RGBE (aka .hdr) file.
|
11-10-2018 - 21:00 | 22-01-2009 - 16:30 | |
| CVE-2008-2665 | 5.0 |
Directory traversal vulnerability in the posix_access function in PHP 5.2.6 and earlier allows remote attackers to bypass safe_mode restrictions via a .. (dot dot) in an http URL, which results in the URL being canonicalized to a local filename after
|
11-10-2018 - 20:42 | 20-06-2008 - 01:41 |