| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-5447 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in DEV Web Management System (WMS) 1.5 allows remote attackers to inject arbitrary web script or HTML via the action parameter.
|
14-02-2024 - 01:17 | 23-10-2006 - 17:07 | |
| CVE-2006-4811 | 6.8 |
Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary
|
16-06-2021 - 12:43 | 18-10-2006 - 17:07 | |
| CVE-2017-17381 | 2.1 |
The Virtio Vring implementation in QEMU allows local OS guest users to cause a denial of service (divide-by-zero error and QEMU process crash) by unsetting vring alignment while updating Virtio rings.
|
10-11-2020 - 18:19 | 07-12-2017 - 02:29 | |
| CVE-2006-5330 | 5.0 |
CRLF injection vulnerability in Adobe Flash Player plugin 9.0.16 and earlier for Windows, 7.0.63 and earlier for Linux, 7.x before 7.0 r67 for Solaris, and before 9.0.28.0 for Mac OS X, allows remote attackers to modify HTTP headers of client request
|
17-10-2018 - 21:42 | 17-10-2006 - 21:07 | |
| CVE-1999-0710 | 7.5 |
The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.
|
03-05-2018 - 01:29 | 25-07-1999 - 04:00 | |
| CVE-2006-5412 | 5.1 |
admin.php in PHP Outburst Easynews 4.4.1 and earlier, when register_globals is enabled, allows remote attackers to bypass authentication, and gain the ability to execute arbitrary code, via the en_login_id parameter.
|
19-10-2017 - 01:29 | 20-10-2006 - 14:07 | |
| CVE-2006-5429 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in Barry Nauta BRIM 1.2.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the renderer parameter in template.tpl.php in (1) templates/barrel/, (2) templates/sidebar/, (3
|
19-10-2017 - 01:29 | 20-10-2006 - 17:07 | |
| CVE-2006-5425 | 5.0 |
XORP (eXtensible Open Router Platform) 1.2 and 1.3 allows remote attackers to cause a denial of service (application crash) via an Open Shortest Path First (OSPF) Link State Advertisement (LSA) with an invalid LSA length field.
|
20-07-2017 - 01:33 | 20-10-2006 - 17:07 | |
| CVE-2006-5428 | 5.0 |
rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive information (ticket data) via a direct request.
|
20-07-2017 - 01:33 | 20-10-2006 - 17:07 | |
| CVE-2006-4819 | 5.1 |
Heap-based buffer overflow in Opera 9.0 and 9.01 allows remote attackers to execute arbitrary code via a long URL in a tag (long link address).
|
20-07-2017 - 01:33 | 17-10-2006 - 21:07 | |
| CVE-2007-0342 | 4.3 |
WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as demonstrated by a crash of OmniWeb 5.5.3 on Mac OS X 1
|
05-09-2008 - 04:00 | 18-01-2007 - 02:28 |