| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-9398 | 5.0 |
The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
|
22-02-2021 - 14:21 | 23-03-2017 - 18:59 | |
| CVE-2016-9399 | 5.0 |
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.
|
22-02-2021 - 14:18 | 23-03-2017 - 18:59 | |
| CVE-2016-9399 | 5.0 |
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors. <a href="http://cwe.mitre.org/data/definitions/617.html">CWE-617: Reachable Assertion</a>
|
25-09-2020 - 12:15 | 23-03-2017 - 18:59 | |
| CVE-2016-9398 | 5.0 |
The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors. <a href="http://cwe.mitre.org/data/definitions/617.html">CWE-617: Reachable Assertion
|
25-09-2020 - 12:15 | 23-03-2017 - 18:59 | |
| CVE-2016-9400 | 7.5 |
The CClient::ProcessServerPacket method in engine/client/client.cpp in Teeworlds before 0.6.4 allows remote servers to write to arbitrary physical memory locations and possibly execute arbitrary code via vectors involving snap handling.
|
11-06-2020 - 15:22 | 22-02-2017 - 16:59 | |
| CVE-2017-8574 | 6.9 |
Graphics in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, aka "Microsoft Graphics Component Elevation of Privilege Vulnerability". This CVE
|
03-10-2019 - 00:03 | 11-07-2017 - 21:29 | |
| CVE-2004-2746 | 7.5 |
SQL injection vulnerability in adminlogin.asp in XTREME ASP Photo Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
|
19-10-2018 - 15:30 | 31-12-2004 - 05:00 | |
| CVE-2006-4088 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in CivicSpace 0.8.5 allow remote attackers to inject arbitrary web script or HTML via the (1) Subject, (2) Comment, and (3) Add new comment sections.
|
17-10-2018 - 21:33 | 11-08-2006 - 10:04 | |
| CVE-2016-7399 | 10.0 |
scripts/license.pl in Veritas NetBackup Appliance 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, 2.7.x through 2.7.3, and 3.0.x allow remote attackers to execute arbitrary commands via shell metacharacters in the hostName parameter to appliancews/
|
27-07-2017 - 01:29 | 04-01-2017 - 21:59 | |
| CVE-2016-5948 | 3.5 |
IBM Kenexa LCMS Premier on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a t
|
09-02-2017 - 21:36 | 01-02-2017 - 20:59 | |
| CVE-2016-5950 | 4.0 |
IBM Kenexa LCMS Premier on Cloud stores user credentials in plain in clear text which can be read by an authenticated user.
|
09-02-2017 - 21:25 | 01-02-2017 - 20:59 | |
| CVE-2016-5951 | 3.5 |
IBM Kenexa LCMS Premier on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a t
|
08-02-2017 - 18:51 | 01-02-2017 - 20:59 | |
| CVE-2016-3057 | 4.3 |
Cross-site scripting (XSS) vulnerability in IBM Sterling B2B Integrator 5.2 before 5020500_14 and 5.2 06 before 5020602_1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
30-11-2016 - 18:45 | 30-11-2016 - 11:59 |