| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2001-0731 | 5.0 |
Apache 1.3.20 with Multiviews enabled allows remote attackers to view directory contents and bypass the index page via a URL containing the "M=D" query string.
|
06-06-2021 - 11:15 | 01-10-2001 - 04:00 | |
| CVE-2015-1067 | 4.3 |
Secure Transport in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 does not properly restrict TLS state transitions, which makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via c
|
08-03-2019 - 16:06 | 11-03-2015 - 01:59 | |
| CVE-2008-6149 | 7.5 |
SQL injection vulnerability in the mDigg (com_mdigg) component 2.2.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cagtegory parameter in a story_lists action to index.php.
|
11-10-2018 - 20:56 | 16-02-2009 - 17:30 | |
| CVE-2008-3149 | 7.8 |
The SNMP daemon in the F5 FirePass 1200 6.0.2 hotfix 3 allows remote attackers to cause a denial of service (daemon crash) by walking the hrSWInstalled OID branch in HOST-RESOURCES-MIB.
|
11-10-2018 - 20:47 | 11-07-2008 - 19:41 | |
| CVE-2017-14536 | 3.5 |
trixbox 2.8.0.4 has XSS via the PATH_INFO to /maint/index.php or /user/includes/language/langChooser.php.
|
06-03-2018 - 19:54 | 16-02-2018 - 04:29 | |
| CVE-2007-1613 | 7.5 |
Directory traversal vulnerability in view.php in MPM Chat 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the logi parameter.
|
19-10-2017 - 01:30 | 23-03-2007 - 00:19 | |
| CVE-2008-6841 | 7.5 |
PHP remote file inclusion vulnerability in the Green Mountain Information Technology and Consulting Database Query (com_dbquery) component 1.4.1.1 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfi
|
29-09-2017 - 01:33 | 01-07-2009 - 13:00 | |
| CVE-2008-6922 | 9.3 |
Multiple stack-based buffer overflows in CMailCOM.dll in CMailServer 5.4.6 allow remote attackers to execute arbitrary code via a long argument to the (1) CreateUserPath, (2) Logout, (3) DeleteMailByUID, (4) MoveToInbox, (5) MoveToFolder, (6) DeleteM
|
29-09-2017 - 01:33 | 10-08-2009 - 18:30 | |
| CVE-2008-3088 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Files module in Kasseler CMS 1.3.0 and 1.3.1 Lite allows remote attackers to inject arbitrary web script or HTML via the cid parameter in a Category action to index.php.
|
29-09-2017 - 01:31 | 09-07-2008 - 19:33 | |
| CVE-2016-7411 | 7.5 |
ext/standard/var_unserializer.re in PHP before 5.6.26 mishandles object-deserialization failures, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an unserialize call that re
|
30-07-2017 - 01:29 | 17-09-2016 - 21:59 | |
| CVE-2012-0278 | 9.3 |
Heap-based buffer overflow in the FlashPix PlugIn before 4.3.4.0 for IrfanView might allow remote attackers to execute arbitrary code via a .fpx file containing a crafted FlashPix image that is not properly handled during decompression.
|
15-02-2013 - 04:53 | 18-04-2012 - 10:33 | |
| CVE-2007-6389 | 2.1 |
The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V.
|
31-10-2012 - 02:48 | 17-12-2007 - 18:46 |