| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-4160 | 6.9 |
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2) l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to c
|
13-02-2023 - 04:27 | 07-01-2011 - 12:00 | |
| CVE-2002-0150 | 7.5 |
Buffer overflow in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to spoof the safety check for HTTP headers and cause a denial of service or execute arbitrary code via HTTP header field values.
|
23-11-2020 - 19:49 | 22-04-2002 - 04:00 | |
| CVE-2016-9381 | 6.9 |
Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability.
|
23-10-2020 - 16:29 | 23-01-2017 - 21:59 | |
| CVE-2017-1474 | 5.0 |
IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 128606.
|
09-10-2019 - 23:26 | 06-06-2018 - 17:29 | |
| CVE-2007-2449 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote att
|
25-03-2019 - 11:29 | 14-06-2007 - 23:30 | |
| CVE-2010-4836 | 4.3 |
Cross-site scripting (XSS) vulnerability in register.html in PHPShop 2.1 EE and earlier allows remote attackers to inject arbitrary web script or HTML via the name_new parameter.
|
10-10-2018 - 20:08 | 14-09-2011 - 02:56 | |
| CVE-2013-7257 | 4.3 |
Cross-site scripting (XSS) vulnerability in Codiad 2.0.7 allows remote attackers to inject arbitrary web script or HTML via the Project Name field.
|
29-08-2017 - 01:34 | 03-01-2014 - 18:54 | |
| CVE-2010-4873 | 4.3 |
Cross-site scripting (XSS) vulnerability in confirm.php in WeBid 0.8.5 P1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
29-08-2017 - 01:29 | 07-10-2011 - 10:55 | |
| CVE-2010-5088 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in SilverStripe 2.3.x before 2.3.9 and 2.4.x before 2.4.3 allow remote attackers to hijack the authentication of administrators via destructive controller actions, a different vulnerability t
|
29-08-2017 - 01:29 | 26-08-2012 - 18:55 | |
| CVE-2010-0113 | 4.3 |
The Symantec Norton Mobile Security application 1.0 Beta for Android records setup details, possibly including wipe/lock credentials, in the device logs, which allows user-assisted remote attackers to obtain potentially sensitive information by lever
|
17-08-2017 - 01:31 | 15-11-2010 - 21:00 |