| Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-6158 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in (a) PMOS Help Desk 2.4, formerly (b) InverseFlow Help Desk 2.31 and also sold as (c) Ace Helpdesk 2.31, allow remote attackers to inject arbitrary web script or HTML via the (1) id or email param
|
17-10-2018 - 21:46 | 28-11-2006 - 23:28 | |
| CVE-2017-13999 | 7.5 |
A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application does not verify string size before copying to memo
|
13-01-2018 - 02:29 | 17-10-2017 - 22:29 | |
| CVE-2005-0413 | 7.5 |
Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the fid in forum.php, (2) the member parameter in member.php, (3) the email parameter in forgot.php, or (4) the nbuser or nbpas
|
11-10-2017 - 01:29 | 27-04-2005 - 04:00 | |
| CVE-2008-4160 | 4.7 |
Unspecified vulnerability in the UFS module in Sun Solaris 8 through 10 and OpenSolaris allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via unknown vectors related to the Solaris Access Control List (ACL) i
|
29-09-2017 - 01:32 | 22-09-2008 - 18:52 | |
| CVE-2012-2315 | 4.0 |
admin/Auth in OpenKM 5.1.7 and other versions before 5.1.8-2 does not properly enforce privileges for changing user roles, which allows remote authenticated users to assign administrator privileges to arbitrary users via the userEdit action.
|
29-08-2017 - 01:31 | 09-09-2012 - 21:55 | |
| CVE-2004-1555 | 7.5 |
Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the (1) keywords parameter to search.asp, (2) handle parameter to profile.asp, (3) txtUserHandle parameter to reg2
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2005-0417 | 10.0 |
Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and earlier has unknown impact and attack vectors. NOTE: due to the delayed disclosure of details for this issue, this candidate may be SPLIT in the future. In addition, this may be a
|
18-10-2016 - 03:11 | 27-04-2005 - 04:00 | |
| CVE-2010-2621 | 5.0 |
The QSslSocketBackendPrivate::transmit function in src_network_ssl_qsslsocket_openssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed request.
|
07-02-2013 - 05:00 | 02-07-2010 - 20:30 | |
| CVE-2000-0399 | 5.0 |
Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name.
|
10-09-2008 - 19:04 | 24-05-2000 - 04:00 |