NVD List
Id | Name | Description | Reject | CVSS Version | CVSS Score | Severity | Pub Date | Modified Date | Actions |
---|---|---|---|---|---|---|---|---|---|
57835 | CVE-2007-5784 | PHP remote file inclusion vulnerability in index.php in CaupoShop Pro 2.x allows remote attackers to execute arbitrary PHP code via a URL in the action parameter. | 2 | 6.8 | Medium | 2017-01-07 | 2011-03-07 | View | |
58347 | CVE-2007-6352 | Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c. | 2 | 6.8 | Medium | 2017-01-07 | 2011-03-07 | View | |
58603 | CVE-2007-6608 | Multiple cross-site scripting (XSS) vulnerabilities in OpenBiblio 0.5.2-pre4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) LAST and (2) FIRST parameters to admin/staff_del_confirm.php, (3) the name parameter to admin/theme_del_confirm.php, or (4) the themeName parameter to admin/theme_preview.php. | 2 | 4.3 | Medium | 2017-01-07 | 2008-11-15 | View | |
59883 | CVE-2006-1161 | Absolute path traversal vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote registered users to execute arbitrary code by uploading a malicious file to the Windows startup folder. | 2 | 6.5 | Medium | 2016-12-20 | 2008-09-05 | View | |
60139 | CVE-2006-1430 | Multiple cross-site scripting (XSS) vulnerabilities in CONTROLzx HMS (formerly DRZES) 3.3.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) dedicatedPlanID parameter to dedicated_order.php, (2) sharedPlanID parameter to shared_order.php, (3) plan_id parameter to customers/server_management.php, and (4) email field to customers/forgotpass.php. | 2 | 4.3 | Medium | 2016-12-20 | 2011-03-07 | View |
Page 16947 of 17672, showing 5 records out of 88360 total, starting on record 84731, ending on 84735