| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-10135 | 4.3 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit vulner
|
06-10-2022 - 19:00 | 08-08-2017 - 15:29 | |
| CVE-2004-1863 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allow remote attackers to inject arbitrary web script or HTML via (1) the u2uheader parameter in editprofile.php, the restrict parameter
|
29-04-2021 - 15:15 | 31-12-2004 - 05:00 | |
| CVE-2004-1864 | 7.5 |
SQL injection vulnerability in Extreme Messageboard (XMB) 1.9 beta allows remote attackers to execute arbitrary SQL commands via the restrict parameter to (1) member.php, (2) misc.php, or (3) today.php.
|
29-04-2021 - 15:15 | 26-03-2004 - 05:00 | |
| CVE-2004-1862 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Extreme Messageboard (XMB) 1.8 SP3 and 1.9 beta allow remote attackers to inject arbitrary web script or HTML via the (1) xmbuser parameter to xmb.php, (2) folder parameter to u2u.php, (3) viewmo
|
29-04-2021 - 15:15 | 26-03-2004 - 05:00 | |
| CVE-2004-2588 | 5.0 |
Intentional information leak in phpinfo.php in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allows remote attackers to obtain sensitive information such as the configuration of the web server and the PHP application.
|
29-04-2021 - 15:15 | 31-12-2004 - 05:00 | |
| CVE-2017-9740 | 6.8 |
The xps_decode_font_char_imp function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a craft
|
03-10-2019 - 00:03 | 26-07-2017 - 19:29 | |
| CVE-2017-10013 | 7.6 |
Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface). The supported version that is affected is AK 2013. Difficult to exploit vulnerability allows unauthenticated attack
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10042 | 7.8 |
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: IKE). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via IKE to compr
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10219 | 2.1 |
Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications (subcomponent: Base). Supported versions that are affected are 4.2.0.0 and 4.2.1.0. Easily exploitable vulnerability allows low privileged attacker with
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10117 | 5.0 |
Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server). The supported version that is affected is Java Advanced Management Console: 2.6. Easily exploitable vulnerability allows unauthenticated attacke
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10231 | 2.1 |
Vulnerability in the Oracle Hospitality Cruise AffairWhere component of Oracle Hospitality Applications (subcomponent: AWExport). The supported version that is affected is 2.2.05.062. Easily exploitable vulnerability allows low privileged attacker wi
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10201 | 2.1 |
Vulnerability in the Oracle Hospitality e7 component of Oracle Hospitality Applications (subcomponent: Other). The supported version that is affected is 4.2.1. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastr
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10221 | 3.7 |
Vulnerability in the Oracle Hospitality RES 3700 component of Oracle Hospitality Applications (subcomponent: OPS Operations). The supported version that is affected is 5.5. Difficult to exploit vulnerability allows low privileged attacker with logon
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2017-10121 | 5.8 |
Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server). The supported version that is affected is Java Advanced Management Console: 2.6. Easily exploitable vulnerability allows unauthenticated attacke
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2011-1969 | 9.3 |
Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified
|
12-10-2018 - 22:01 | 12-10-2011 - 02:52 | |
| CVE-2008-5171 | 9.3 |
Multiple directory traversal vulnerabilities in admin/minibb/index.php in phpBLASTER CMS 1.0 RC1, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) DB, (
|
29-09-2017 - 01:32 | 19-11-2008 - 18:11 | |
| CVE-2017-10084 | 4.0 |
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Report Generator). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. E
|
20-08-2017 - 13:12 | 08-08-2017 - 15:29 | |
| CVE-2006-7163 | 6.9 |
DreameeSoft Password Master 1.0 stores the database in an unencrypted format when the master password is set, which allows attackers with physical access to read the database contents via an unspecified authentication bypass. NOTE: the provenance of
|
05-09-2008 - 21:16 | 10-03-2007 - 00:19 |