Neocrome Land Down Under — known CVE vulnerabilities
Every CVE whose affected-product data names Neocrome Land Down Under, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2006-6268 — CVSS 10.0 (critical): SQL injection vulnerability in system/core/profile/profile.inc.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote…
CVE-2004-2669 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Land Down Under (LDU) v701 allow remote attackers to execute arbitrary SQL commands or obtain the…
CVE-2006-6835 — CVSS 7.5 (high): SQL injection vulnerability in Journal.inc.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote attackers to execute…
CVE-2005-2675 — CVSS 7.5 (high): Note: the vendor has disputed this issue. Multiple SQL injection vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to…
CVE-2005-2788 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Land Down Under (LDU) 801 and earlier allow remote attackers to execute arbitrary SQL commands…
CVE-2005-4821 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Land Down Under (LDU) v801 and earlier allow remote attackers to execute arbitrary SQL commands…
CVE-2003-1315 — CVSS 7.5 (high): SQL injection vulnerability in auth.php in Land Down Under (LDU) v601 and earlier allows remote attackers to execute arbitrary SQL commands.
CVE-2006-6577 — CVSS 6.8 (medium): SQL injection vulnerability in polls.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote attackers to execute arbitrary SQL…
CVE-2006-2096 — CVSS 5.0 (medium): plug.php in Land Down Under (LDU) 802 and earlier allows remote attackers to obtain sensitive information via an invalid (1) month or (2)…
CVE-2005-2884 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in events.php in Land Down Under (LDU) 801 and earlier allows remote attackers to inject arbitrary…
CVE-2005-2674 — CVSS 4.3 (medium): Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote…
CVE-2005-2780 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) allows remote attackers to inject arbitrary web script or HTML via a…
CVE-2004-2038 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) before LDU 700 allows remote attackers to inject arbitrary web script or…