| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-5279 | 7.2 |
Heap-based buffer overflow in the ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via vectors related to receiving packets.
|
13-02-2023 - 00:52 | 28-09-2015 - 16:59 | |
| CVE-2003-1532 | 7.5 |
SQL injection vulnerability in compte.php in PhpMyShop 1.00 allows remote attackers to execute arbitrary SQL commands via the (1) identifiant and (2) password parameters.
|
19-10-2018 - 15:29 | 31-12-2003 - 05:00 | |
| CVE-2008-0879 | 7.5 |
SQL injection vulnerability in modules.php in the Web_Links module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the cid parameter in a viewlink action.
|
15-10-2018 - 22:03 | 21-02-2008 - 19:44 | |
| CVE-2007-6292 | 7.5 |
SQL injection vulnerability in leggi_commenti.asp in MWOpen 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:29 | 10-12-2007 - 18:46 | |
| CVE-2006-0833 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Barracuda Directory 1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the (1) Add URL and (2) Suggest Category module. NOTE: the provenance of this inf
|
20-07-2017 - 01:30 | 22-02-2006 - 00:02 | |
| CVE-2017-0105 | 4.3 |
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information fro
|
12-07-2017 - 01:29 | 17-03-2017 - 00:59 | |
| CVE-2014-3776 | 7.5 |
Buffer overflow in the "read-u8vector!" procedure in the srfi-4 unit in CHICKEN stable 4.8.0.7 and development snapshots before 4.9.1 allows remote attackers to cause a denial of service (memory corruption and application crash) and possibly execute
|
01-07-2017 - 01:29 | 20-05-2014 - 14:55 | |
| CVE-2014-2192 | 4.3 |
Cross-site scripting (XSS) vulnerability in Cisco Unified Web and E-mail Interaction Manager 9.0(2) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuj43033.
|
16-09-2015 - 19:27 | 20-05-2014 - 11:13 | |
| CVE-2014-3935 | 7.5 |
SQL injection vulnerability in glossaire-aff.php in the Glossaire module 1.0 for XOOPS allows remote attackers to execute arbitrary SQL commands via the lettre parameter.
|
03-06-2014 - 11:08 | 02-06-2014 - 14:55 | |
| CVE-2009-1999 | 4.3 |
Unspecified vulnerability in the Business Intelligence Enterprise Edition component in unspecified Oracle Application Server versions allows remote attackers to affect integrity via unknown vectors. Per: http://www.oracle.com/technology/deploy/securi
|
23-10-2012 - 03:07 | 22-10-2009 - 18:30 |