| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-6167 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in L. Brandon Stone and Nathanial P. Hendler Active PHP Bookmarks (APB) 1.1.02 allow remote attackers to execute arbitrary PHP code via a URL in the APB_SETTINGS['apb_path'] parameter in (1) apb_comm
|
11-04-2024 - 00:41 | 29-11-2006 - 02:28 | |
| CVE-2017-13153 | 7.2 |
An elevation of privilege vulnerability in the Android media framework (libaudioservice). Product: Android. Versions: 8.0. Android ID A-65280854.
|
03-10-2019 - 00:03 | 06-12-2017 - 14:29 | |
| CVE-2017-13151 | 9.3 |
A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-63874456.
|
03-10-2019 - 00:03 | 06-12-2017 - 14:29 | |
| CVE-2017-0837 | 7.2 |
An elevation of privilege vulnerability in the Android media framework (libaudiopolicymanager). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64340921.
|
03-10-2019 - 00:03 | 06-12-2017 - 14:29 | |
| CVE-2017-0880 | 7.1 |
A denial of service vulnerability in the Android media framework (libskia). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID A-65646012.
|
03-10-2019 - 00:03 | 06-12-2017 - 14:29 | |
| CVE-2006-6340 | 5.0 |
keystone.exe in nVIDIA nView allows attackers to cause a denial of service via a long command line argument. NOTE: it is not clear whether this issue crosses security boundaries. If not, then this is not a vulnerability.
|
17-10-2018 - 21:47 | 07-12-2006 - 01:28 | |
| CVE-2006-6289 | 6.8 |
Woltlab Burning Board (wBB) Lite 1.0.2 does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary SQL commands vi
|
17-10-2018 - 21:47 | 05-12-2006 - 11:28 | |
| CVE-2006-6133 | 7.6 |
Stack-based buffer overflow in Visual Studio Crystal Reports for Microsoft Visual Studio .NET 2002 and 2002 SP1, .NET 2003 and 2003 SP1, and 2005 and 2005 SP1 (formerly Business Objects Crystal Reports XI Professional) allows user-assisted remote att
|
17-10-2018 - 21:46 | 28-11-2006 - 01:07 | |
| CVE-2017-0878 | 9.3 |
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 8.0. Android ID A-65186291.
|
19-12-2017 - 14:43 | 06-12-2017 - 14:29 | |
| CVE-2017-0876 | 9.3 |
A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0. Android ID A-64964675.
|
19-12-2017 - 14:43 | 06-12-2017 - 14:29 | |
| CVE-2017-0877 | 9.3 |
A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0. Android ID A-66372937.
|
19-12-2017 - 14:43 | 06-12-2017 - 14:29 | |
| CVE-2017-0872 | 9.3 |
A remote code execution vulnerability in the Android media framework (libskia). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65290323.
|
19-12-2017 - 14:39 | 06-12-2017 - 14:29 | |
| CVE-2017-0874 | 7.1 |
A denial of service vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-63315932.
|
19-12-2017 - 14:38 | 06-12-2017 - 14:29 | |
| CVE-2017-0873 | 7.1 |
A denial of service vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-63316255.
|
19-12-2017 - 14:38 | 06-12-2017 - 14:29 | |
| CVE-1999-1069 | 5.0 |
Directory traversal vulnerability in carbo.dll in iCat Carbo Server 3.0.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the icatcommand parameter.
|
19-12-2017 - 02:29 | 08-11-1997 - 05:00 | |
| CVE-2017-13148 | 7.1 |
A denial of service vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65717533.
|
18-12-2017 - 15:05 | 06-12-2017 - 14:29 | |
| CVE-2006-6150 | 7.5 |
PHP remote file inclusion vulnerability in memory/OWLMemoryProperty.php in OWLLib 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the OWLLIB_ROOT parameter.
|
19-10-2017 - 01:29 | 28-11-2006 - 23:28 | |
| CVE-2006-6213 | 7.5 |
index.php in PEGames uses the extract function to overwrite critical variables, which allows remote attackers to conduct PHP remote file inclusion attacks via the abs_url parameter, which is later extracted to overwrite a previously uncontrolled valu
|
19-10-2017 - 01:29 | 01-12-2006 - 01:28 | |
| CVE-2008-6231 | 7.5 |
Pre Classified Listing PHP allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
|
29-09-2017 - 01:33 | 20-02-2009 - 23:30 | |
| CVE-2012-1646 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in the FAQ module 6.x-1.x before 6.x-1.13 and 7.x-1.x-rc1 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via the (1) title parameter in faq.admin.inc or (2) detai
|
29-08-2017 - 01:31 | 25-09-2012 - 23:55 | |
| CVE-2006-6212 | 7.5 |
PHP remote file inclusion vulnerability in centre.php in Site News (site_news) 2.00, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: The provenance of this information is unknown; th
|
08-03-2011 - 02:45 | 01-12-2006 - 01:28 | |
| CVE-2006-6151 | 7.5 |
PHP remote file inclusion vulnerability in centre.php in Messagerie Locale as of 20061127 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: the provenance of this information is unknown; the details are obt
|
08-03-2011 - 02:45 | 28-11-2006 - 23:28 |