| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2002-0654 | 5.0 |
Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to determine the full pathname of the server via (1) a request for a .var file, which leaks the pathname in the resulting error message, or (2) via an error message that o
|
06-06-2021 - 11:15 | 05-09-2002 - 04:00 | |
| CVE-2018-14800 | 6.8 |
Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, by opening a crafted file, to cause the application to read past the boundary allocated to a stack object, which could allow execution of code under the context of the application.
|
09-10-2019 - 23:35 | 03-10-2018 - 13:29 | |
| CVE-2017-3373 | 5.8 |
Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite (subcomponent: User Interface). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulner
|
03-10-2019 - 00:03 | 27-01-2017 - 22:59 | |
| CVE-2012-6651 | 5.0 |
Multiple directory traversal vulnerabilities in the Vitamin plugin before 1.1.0 for WordPress allow remote attackers to access arbitrary files via a .. (dot dot) in the path parameter to (1) add_headers.php or (2) minify.php.
|
01-08-2014 - 14:07 | 31-07-2014 - 14:55 | |
| CVE-2005-3695 | 4.3 |
Cross-site scripting (XSS) vulnerability in admin/config/confMgr.php in LiteSpeed Web Server 2.1.5 allows remote attackers to inject arbitrary web script or HTML via the m parameter.
|
08-03-2011 - 02:26 | 20-11-2005 - 22:03 |