| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-4855 | 7.5 |
SQL injection vulnerability in index.php in TYPO3 4.0 allows remote attackers to execute arbitrary SQL commands via the showUid parameter. NOTE: the TYPO3 Security Team disputes this report, stating that "there is no such vulnerability... The showUid
|
11-04-2024 - 00:46 | 11-05-2010 - 12:02 | |
| CVE-2005-1650 | 5.0 |
The web mail service in Woppoware PostMaster 4.2.2 (build 3.2.5) generates different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernames.
|
14-02-2024 - 14:43 | 18-05-2005 - 04:00 | |
| CVE-2001-0875 | 7.5 |
Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.
|
23-07-2021 - 12:55 | 26-11-2001 - 05:00 | |
| CVE-2018-1012 | 9.3 |
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8
|
03-10-2019 - 00:03 | 12-04-2018 - 01:29 | |
| CVE-2016-8682 | 5.0 |
The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header.
|
30-10-2018 - 16:27 | 15-02-2017 - 19:59 | |
| CVE-2009-1929 | 9.3 |
Heap-based buffer overflow in the Microsoft Terminal Services Client ActiveX control running RDP 6.1 on Windows XP SP2, Vista SP1 or SP2, or Server 2008 Gold or SP2; or 5.2 or 6.1 on Windows XP SP3; allows remote attackers to execute arbitrary code v
|
30-10-2018 - 16:25 | 12-08-2009 - 17:30 | |
| CVE-2009-1546 | 8.5 |
Integer overflow in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows allows remote attackers to execute arbitrary code on a Windows 2000 SP4 system via a crafted AVI file, or cause a denial of service on a Windows XP
|
30-10-2018 - 16:25 | 12-08-2009 - 17:30 | |
| CVE-2007-2207 | 7.5 |
SQL injection vulnerability in contact/index.php in Ripe Website Manager 0.8.4 and earlier allows remote attackers to execute arbitrary SQL commands via the ripeformpost parameter.
|
16-10-2018 - 16:42 | 24-04-2007 - 20:19 | |
| CVE-2007-2206 | 4.3 |
Cross-site scripting (XSS) vulnerability in contact/index.php in Ripe Website Manager 0.8.4 and earlier allows remote attackers to inject arbitrary web script or HTML via a leading "<"<" in the ripeformpost parameter.
|
29-07-2017 - 01:31 | 24-04-2007 - 20:19 | |
| CVE-2005-1652 | 7.5 |
message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to bypass authentication by modifying the email parameter.
|
05-09-2008 - 20:49 | 18-05-2005 - 04:00 | |
| CVE-2005-1651 | 7.5 |
Directory traversal vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to determine the existence of arbitrary files via a .. (dot dot) in the wmm parameter.
|
05-09-2008 - 20:49 | 18-05-2005 - 04:00 | |
| CVE-2005-1653 | 6.8 |
Cross-site scripting (XSS) vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to inject arbitrary web script or HTML via the email parameter.
|
05-09-2008 - 20:49 | 18-05-2005 - 04:00 |