Filtered by vendor Singapore Subscriptions
Filtered by product Singapore Subscriptions
Total 7 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2005-1955 1 Singapore 1 Singapore 2024-08-07 N/A
Cross-site scripting (XSS) vulnerability in index.php in singapore 0.9.11 allows remote attackers to inject arbitrary web script or HTML via the gallery parameter.
CVE-2005-1954 1 Singapore 1 Singapore 2024-08-07 N/A
singapore 0.9.11 allows remote attackers to obtain sensitive information via a direct request to (1) admin.class.php, (2) any .tpl.php file in templates/admin_default/, or (3) any .tpl.php file in templates/default/, which reveal the path in an error message.
CVE-2006-3196 1 Singapore 1 Singapore 2024-08-07 N/A
index.php in singapore 0.10.0 and earlier allows remote attackers to obtain the installation path via an invalid template parameter, which reveals the path in an error message.
CVE-2006-3195 1 Singapore 1 Singapore 2024-08-07 N/A
Cross-site scripting (XSS) vulnerability in index.php in singapore 0.10.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the template parameter.
CVE-2006-3194 1 Singapore 1 Singapore 2024-08-07 N/A
Directory traversal vulnerability in index.php in singapore 0.10.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the (1) gallery and (2) template parameter.
CVE-2006-2262 1 Singapore 1 Singapore 2024-08-07 N/A
Cross-site scripting (XSS) vulnerability in index.php in singapore 0.9.7 allows remote attackers to inject arbitrary web script or HTML via the image parameter.
CVE-2008-0400 2 Modern, Singapore 2 Modern, Singapore 2024-08-07 N/A
Cross-site scripting (XSS) vulnerability in header.tpl.php in the modern template for Singapore 0.10.1 allows remote attackers to inject arbitrary web script or HTML via the gallery parameter to default.php.