| CVE-2006-1556 | | 0.03 | — | 0.00 | | Mar 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in view_caricatier.php in AL-Caricatier 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) CatName, (2) CaricatierID, or (3) CatID parameter. |
| CVE-2007-4167 | | 0.00 | — | 0.01 | | Aug 7, 2007 | PHP remote file inclusion vulnerability in cat_viewed.php in AL-Caricatier 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the CatName parameter. |
| CVE-2005-4653 | | 0.00 | — | 0.01 | | Dec 31, 2005 | Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin directory with a cookie_username=admin argument. |
