| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-2668 | 6.8 |
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged at
|
18-07-2022 - 17:46 | 18-01-2018 - 02:29 | |
| CVE-2007-6331 | 9.3 |
Absolute path traversal vulnerability in the HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier allows remote attackers t
|
15-10-2018 - 21:52 | 13-12-2007 - 19:46 | |
| CVE-2007-6333 | 5.8 |
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, allows remote attackers to read arbitrary registry values via the
|
15-10-2018 - 21:52 | 13-12-2007 - 19:46 | |
| CVE-2007-6330 | 10.0 |
Meridian Prolog Manager 2007, and 7.5 and earlier, sends all usernames and passwords to the client in a (1) cleartext or (2) weakly encrypted format to support client-side login authentication, which makes it easier for remote attackers to obtain dat
|
15-10-2018 - 21:52 | 13-12-2007 - 19:46 | |
| CVE-2007-6332 | 9.3 |
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, on Microsoft Windows before Vista allows remote attackers to crea
|
15-10-2018 - 21:52 | 13-12-2007 - 19:46 | |
| CVE-2010-2873 | 9.3 |
Adobe Shockwave Player before 11.5.8.612 does not properly validate offset values in the rcsL RIFF chunks of (1) .DIR and (2) .DCR Director movies, which allows remote attackers to cause a denial of service (heap memory corruption) or execute arbitra
|
10-10-2018 - 20:00 | 26-08-2010 - 21:00 | |
| CVE-2007-6347 | 6.8 |
PHP remote file inclusion vulnerability in blocks/block_site_map.php in ViArt (1) CMS 3.3.2, (2) HelpDesk 3.3.2, (3) Shop Evaluation 3.3.2, and (4) Shop Free 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the root_folder_pat
|
19-10-2017 - 01:30 | 13-12-2007 - 22:46 | |
| CVE-2001-0328 | 5.0 |
TCP implementations that use random increments for initial sequence numbers (ISN) can allow remote attackers to perform session hijacking or disruption by injecting a flood of packets with a range of ISN values, one of which may match the expected IS
|
19-10-2017 - 01:29 | 27-06-2001 - 04:00 | |
| CVE-2007-1118 | 6.8 |
Multiple PHP remote file inclusion vulnerabilities in eFiction 3.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path_to_smf parameter to (1) bridges/SMF/logout.php or (2) get_session_vars.php.
|
11-10-2017 - 01:31 | 27-02-2007 - 02:28 | |
| CVE-2007-6344 | 6.8 |
Directory traversal vulnerability in modules/cms/index.php in Mcms Easy Web Make 1.3, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.
|
29-09-2017 - 01:29 | 13-12-2007 - 22:46 | |
| CVE-2007-6345 | 7.5 |
SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the pack_var function in module/db.lib/db_mysql.lib. NOTE: some of the
|
08-08-2017 - 01:29 | 13-12-2007 - 22:46 | |
| CVE-2016-5721 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
28-11-2016 - 20:29 | 29-08-2016 - 17:59 |