| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-6671 | 4.0 |
Application Protection Bypass vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows remote authenticated users to bypass localhost only access security protection for some ePO features via a specially c
|
09-10-2019 - 23:41 | 15-06-2018 - 14:29 | |
| CVE-2018-6672 | 4.0 |
Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors.
|
09-10-2019 - 23:41 | 15-06-2018 - 14:29 | |
| CVE-2002-0079 | 7.5 |
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows attackers to cause a denial of service or execute arbitrary code.
|
30-10-2018 - 16:25 | 22-04-2002 - 04:00 | |
| CVE-2015-1670 | 4.3 |
The Windows DirectWrite library, as used in Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2, allows remote attackers to obtain sensitive information from process memory via a crafted OpenType font on a web site, aka "OpenType F
|
12-10-2018 - 22:08 | 13-05-2015 - 10:59 | |
| CVE-2010-4814 | 7.5 |
SQL injection vulnerability in index1.php in Best Soft Inc. (BSI) Advance Hotel Booking System 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.
|
29-08-2017 - 01:29 | 08-07-2011 - 22:55 | |
| CVE-2010-4215 | 6.5 |
UI/Manage.pm in Foswiki 1.1.0 and 1.1.1 allows remote authenticated users to gain privileges by modifying the GROUP and ALLOWTOPICCHANGE preferences in the topic preferences for Main.AdminGroup.
|
17-08-2017 - 01:33 | 17-11-2010 - 01:00 | |
| CVE-2007-3247 | 6.8 |
SQL injection vulnerability in VirtueMart before 1.0.11 allows remote attackers to execute arbitrary SQL commands via unspecified parameters, possibly related to improper input validation of the PATH_INFO (PHP_SELF) by virtuemart_parser.php.
|
29-07-2017 - 01:32 | 18-06-2007 - 10:30 | |
| CVE-2016-7460 | 6.4 |
The Single Sign-On feature in VMware vCenter Server 5.5 before U3e and 6.0 before U2a and vRealize Automation 6.x before 6.2.5 allows remote attackers to read arbitrary files or cause a denial of service via an XML document containing an external ent
|
28-07-2017 - 01:29 | 29-12-2016 - 09:59 | |
| CVE-2005-2540 | 5.0 |
CRLF injection vulnerability in FlatNuke 2.5.5 and possibly earlier versions allows remote attackers to execute arbitrary PHP commands via an ASCII char 13 (carriage return) in the signature field, which is injected into a PHP script without a preced
|
11-07-2017 - 01:32 | 10-08-2005 - 04:00 | |
| CVE-2009-1433 | 7.5 |
SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe before 2.3.1 allows remote attackers to execute arbitrary SQL commands via the filename parameter.
|
27-04-2009 - 04:00 | 24-04-2009 - 23:30 |