| Max CVSS | 9.3 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-4929 | 5.0 |
MyBB (aka MyBulletinBoard) 1.4.2 uses insufficient randomness to compose filenames of uploaded files used as attachments, which makes it easier for remote attackers to read these files by guessing filenames.
|
14-02-2024 - 16:09 | 04-11-2008 - 21:00 | |
| CVE-2006-7065 | 5.0 |
Microsoft Internet Explorer allows remote attackers to cause a denial of service (crash) via an IFRAME with a certain XML file and XSL stylesheet that triggers a crash in mshtml.dll when a refresh is called, probably a null pointer dereference.
|
23-07-2021 - 15:06 | 02-03-2007 - 21:18 | |
| CVE-2006-4042 | 7.5 |
Multiple SQL injection vulnerabilities in trackback.php in myWebland myBloggie 2.1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) title, (2) url, (3) excerpt, or (4) blog_name parameters.
|
17-10-2018 - 21:33 | 09-08-2006 - 23:04 | |
| CVE-2006-4125 | 7.5 |
Stack-based buffer overflow in main.c in DConnect Daemon 0.7.0 and earlier allows remote attackers to execute arbitrary code via a large nickname, which is not properly handled by the listen_thread_udp function. This vulnerability is addressed in the
|
17-10-2018 - 21:33 | 14-08-2006 - 23:04 | |
| CVE-2006-4071 | 2.6 |
Sign extension vulnerability in the createBrushIndirect function in the GDI library (gdi32.dll) in Microsoft Windows XP, Server 2003, and possibly other versions, allows user-assisted attackers to cause a denial of service (application crash) via a c
|
17-10-2018 - 21:33 | 10-08-2006 - 01:04 | |
| CVE-2007-0034 | 9.3 |
Buffer overflow in the Advanced Search (Finder.exe) feature of Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted Outlook Saved Searches (OSS) file that triggers memory corruption, aka
|
16-10-2018 - 16:30 | 09-01-2007 - 23:28 | |
| CVE-2015-0204 | 4.3 |
The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak
|
19-07-2018 - 01:29 | 09-01-2015 - 02:59 | |
| CVE-2000-1095 | 7.2 |
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
|
10-10-2017 - 01:29 | 09-01-2001 - 05:00 | |
| CVE-2016-3591 | 9.0 |
Unspecified vulnerability in the Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters, a different
|
01-09-2017 - 01:29 | 21-07-2016 - 10:14 | |
| CVE-2006-4041 | 7.5 |
SQL injection vulnerability in Pike before 7.6.86, when using a Postgres database server, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors. This vulnerability is addressed in the following product release:
Pik
|
20-07-2017 - 01:32 | 09-08-2006 - 23:04 |