| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-9946 | 5.0 |
A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. An attacker with network access to the integrated web server (80/tcp and 443/tcp) could bypass the authentication and download
|
09-05-2023 - 16:27 | 23-10-2017 - 08:29 | |
| CVE-2017-9947 | 5.0 |
A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. A directory traversal vulnerability could allow a remote attacker with network access to the integrated web server (80/tcp and
|
09-05-2023 - 16:27 | 23-10-2017 - 08:29 | |
| CVE-2005-0045 | 7.5 |
The Server Message Block (SMB) implementation for Windows NT 4.0, 2000, XP, and Server 2003 does not properly validate certain SMB packets, which allows remote attackers to execute arbitrary code via Transaction responses containing (1) Trans or (2)
|
30-04-2019 - 14:27 | 02-05-2005 - 04:00 | |
| CVE-2005-0051 | 7.5 |
The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe
|
12-10-2018 - 21:35 | 02-05-2005 - 04:00 | |
| CVE-2008-4161 | 6.8 |
SQL injection vulnerability in search_inv.php in Assetman 2.5b allows remote attackers to execute arbitrary SQL commands and conduct session fixation attacks via a combination of crafted order and order_by parameters in a search_all action.
|
29-09-2017 - 01:32 | 22-09-2008 - 18:52 | |
| CVE-2013-3787 | 4.3 |
Unspecified vulnerability in Oracle Solaris 10 and 11 allows remote attackers to affect availability via unknown vectors related to Kernel.
|
19-09-2017 - 01:36 | 17-07-2013 - 13:41 | |
| CVE-2014-9112 | 5.0 |
Heap-based buffer overflow in the process_copy_in function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive.
|
08-09-2017 - 01:29 | 02-12-2014 - 16:59 | |
| CVE-2011-5199 | 4.3 |
Cross-site scripting (XSS) vulnerability in sign.php in tinyguestbook allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
|
29-08-2017 - 01:30 | 23-09-2012 - 17:55 | |
| CVE-2006-6159 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in newticket.php in DeskPRO 2.0.0 and 2.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) message or (2) subject parameter.
|
29-07-2017 - 01:29 | 28-11-2006 - 23:28 | |
| CVE-2005-0345 | 5.0 |
viewthread.php in php-fusion 4.x does not check the (1) forum_id or (2) forum_cat parameters, which allows remote attackers to view protected forums via the thread_id parameter.
|
11-07-2017 - 01:32 | 02-05-2005 - 04:00 | |
| CVE-2005-0519 | 10.0 |
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerabilit
|
11-07-2017 - 01:32 | 18-02-2005 - 05:00 | |
| CVE-2004-0964 | 10.0 |
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
|
11-07-2017 - 01:30 | 09-02-2005 - 05:00 | |
| CVE-2000-0359 | 10.0 |
Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.
|
10-09-2008 - 19:04 | 20-10-2000 - 04:00 |