| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-6092 | 7.5 |
Multiple SQL injection vulnerabilities in vehiclelistings.asp in 20/20 Auto Gallery allow remote attackers to execute arbitrary SQL commands via the (1) vehicleID, (2) categoryID_list, (3) sale_type, (4) stock_number, (5) manufacturer, (6) model, (7)
|
14-02-2024 - 01:17 | 24-11-2006 - 18:07 | |
| CVE-2004-0981 | 10.0 |
Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
| CVE-2017-14352 | 4.3 |
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow cross-site scripting.
|
07-10-2017 - 01:29 | 30-09-2017 - 01:29 | |
| CVE-2010-2691 | 7.5 |
Multiple SQL injection vulnerabilities in 2daybiz Custom T-Shirt Design Script allow remote attackers to execute arbitrary SQL commands via the (1) sbid parameter to products_details.php, (2) pid parameter to products/products.php, and (3) designid p
|
17-08-2017 - 01:32 | 12-07-2010 - 13:27 | |
| CVE-2004-2741 | 4.3 |
Cross-site scripting (XSS) vulnerability in the "help window" (help.php) in Horde Application Framework 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) module, (2) topic, or (3) module parameters.
|
29-07-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2004-2728 | 3.5 |
Buffer overflow in the FTP server of Hummingbird Connectivity 7.1 and 9.0 allows remote, authenticated users to cause a denial of service (application crash) via a long argument to the XCWD command.
|
29-07-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2004-2743 | 6.4 |
upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files.
|
29-07-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2004-1637 | 7.5 |
The Hawking Technologies HAR11A modem/router allows remote attackers to obtain sensitive information by connecting to port 254, which displays a management interface and information on established connections.
|
11-07-2017 - 01:31 | 26-10-2004 - 04:00 | |
| CVE-2004-1008 | 10.0 |
Integer signedness error in the ssh2_rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2_MSG_DEBUG packet with a modified stringlen parameter, which leads to a buffer overflow.
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2014-8989 | 4.6 |
The Linux kernel through 3.17.4 does not properly restrict dropping of supplemental group memberships in certain namespace scenarios, which allows local users to bypass intended file permissions by leveraging a POSIX ACL containing an entry for the g
|
03-01-2017 - 02:59 | 30-11-2014 - 01:59 | |
| CVE-2000-0380 | 7.1 |
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
|
10-09-2008 - 04:00 | 26-04-2000 - 04:00 |