Max CVSS | 7.5 | Min CVSS | 2.7 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-12710 | 2.7 |
An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to
|
26-04-2023 - 19:27 | 29-08-2018 - 19:29 | |
CVE-2007-5461 | 3.5 |
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write reque
|
25-03-2019 - 11:29 | 15-10-2007 - 18:17 | |
CVE-2018-17140 | 3.5 |
The Quizlord plugin through 2.0 for WordPress is prone to Stored XSS via the title parameter in a ql_insert action to wp-admin/admin.php.
|
09-11-2018 - 17:00 | 17-09-2018 - 06:29 | |
CVE-2018-17138 | 3.5 |
The Jibu Pro plugin through 1.7 for WordPress is prone to Stored XSS via the wp-content/plugins/jibu-pro/quiz_action.php name (aka Quiz Name) field.
|
08-11-2018 - 19:17 | 17-09-2018 - 06:29 | |
CVE-2018-16133 | 5.0 |
Cybrotech CyBroHttpServer 1.0.3 allows Directory Traversal via a ../ in the URI.
|
19-10-2018 - 18:30 | 29-08-2018 - 22:29 | |
CVE-2018-16134 | 4.3 |
Cybrotech CyBroHttpServer 1.0.3 allows XSS via a URI.
|
19-10-2018 - 18:25 | 29-08-2018 - 22:29 | |
CVE-2010-4945 | 7.5 |
SQL injection vulnerability in the CamelcityDB (com_camelcitydb2) component 2.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
|
29-08-2017 - 01:29 | 09-10-2011 - 10:55 |