| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-3734 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in markposts.php in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13 and earlier allows remote attackers to hijack the authentication of users for requests that marks
|
01-12-2020 - 14:54 | 20-04-2017 - 21:59 | |
| CVE-2004-0815 | 7.5 |
The unix_clean_name function in Samba 2.2.x through 2.2.11, and 3.0.x before 3.0.2a, trims certain directory names down to absolute paths, which could allow remote attackers to bypass the specified share restrictions and read, write, or list arbitrar
|
30-10-2018 - 16:25 | 03-11-2004 - 05:00 | |
| CVE-2005-0862 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in PHPOpenChat 3.0.1 and earlier allow remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter to (1) poc_loginform.php or (2) phpbb/poc.php, the poc_root_path parameter to (
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
| CVE-2006-6118 | 6.8 |
Cross-site scripting (XSS) vulnerability in thumbs.php in mmgallery 1.55 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
17-10-2018 - 21:46 | 26-11-2006 - 22:07 | |
| CVE-2000-0402 | 2.1 |
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.
|
12-10-2018 - 21:29 | 30-05-2000 - 04:00 | |
| CVE-2005-0384 | 5.0 |
Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client.
|
03-10-2018 - 21:29 | 15-03-2005 - 05:00 | |
| CVE-2016-4430 | 6.8 |
Apache Struts 2 2.3.20 through 2.3.28.1 mishandles token validation, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks via unspecified vectors.
|
31-10-2017 - 01:29 | 04-07-2016 - 22:59 | |
| CVE-2005-0210 | 4.9 |
Netfilter in the Linux kernel 2.6.8.1 allows local users to cause a denial of service (memory consumption) via certain packet fragments that are reassembled twice, which causes a data structure to be allocated twice.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
| CVE-2008-6030 | 7.5 |
Multiple SQL injection vulnerabilities in NetArtMedia Jobs Portal 1.3 allow remote attackers to execute arbitrary SQL commands via (1) the job parameter to index.php in the search module or (2) the news_id parameter to index.php.
|
29-09-2017 - 01:32 | 03-02-2009 - 11:30 | |
| CVE-2005-0797 | 5.0 |
Novell iChain Mini FTP Server 2.3 displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.
|
18-10-2016 - 03:14 | 15-03-2005 - 05:00 |