| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-2920 | 6.8 |
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code executi
|
13-06-2022 - 19:18 | 05-10-2017 - 19:29 | |
| CVE-2004-0866 | 7.5 |
Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.
|
23-07-2021 - 12:55 | 16-09-2004 - 04:00 | |
| CVE-2004-0867 | 7.5 |
Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. NOTE: it w
|
23-07-2021 - 12:55 | 23-12-2004 - 05:00 | |
| CVE-2010-2612 | 2.1 |
Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive information via unknown vectors.
|
30-10-2018 - 16:25 | 02-07-2010 - 12:44 | |
| CVE-2004-0067 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in phpGedView before 2.65 allow remote attackers to inject arbitrary HTML or web script via (1) descendancy.php, (2) index.php, (3) individual.php, (4) login.php, (5) relationship.php, (6) source.ph
|
19-10-2018 - 15:30 | 17-02-2004 - 05:00 | |
| CVE-2004-2479 | 5.0 |
Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2008-4111 | 9.3 |
Unspecified vulnerability in Servlet Engine/Web Container in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 and 6.1 before 6.1.0.19, when the FileServing feature is enabled, has unknown impact and attack vectors.
|
08-08-2017 - 01:32 | 16-09-2008 - 23:00 | |
| CVE-2004-2485 | 5.0 |
Unspecified vulnerability in PHP Live! before 2.8.2, due to a "major security problem," allows remote attackers to include arbitrary files and directories via unspecified attack vectors.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-1223 | 5.0 |
The Management Agent in F-Secure Policy Manager 5.11.2810 allows remote attackers to gain sensitive information, such as the absolute path for the web server, via an HTTP request to fsmsh.dll without any parameters.
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2004-1171 | 2.1 |
KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-reada
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2000-0412 | 7.5 |
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.
|
10-09-2008 - 19:04 | 01-05-1999 - 04:00 |