Max CVSS | 10.0 | Min CVSS | 1.7 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-16679 | 5.8 |
URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 NUC, SAP KERNEL 64 Unicode 7.21, 7.21EXT, 7.22 and 7.22EXT; SAP KERNEL 7.21, 7.22, 7.45, 7.49 and 7.52, that allows an attacker to redirec
|
04-01-2018 - 19:40 | 12-12-2017 - 14:29 | |
CVE-2001-0076 | 10.0 |
register.cgi in Ikonboard 2.1.7b and earlier allows remote attackers to execute arbitrary commands via the SEND_MAIL parameter, which overwrites an internal program variable that references a program to be executed.
|
19-12-2017 - 02:29 | 12-02-2001 - 05:00 | |
CVE-2006-6567 | 10.0 |
PHP remote file inclusion vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
|
19-10-2017 - 01:29 | 15-12-2006 - 11:28 | |
CVE-2006-6553 | 7.5 |
PHP remote file inclusion vulnerability in includes/newssuite_constants.php in the NewsSuite 1.03 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.
|
19-10-2017 - 01:29 | 14-12-2006 - 18:28 | |
CVE-2006-6568 | 10.0 |
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
|
19-10-2017 - 01:29 | 15-12-2006 - 11:28 | |
CVE-2006-6107 | 1.7 |
Unspecified vulnerability in the match_rule_equal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and cause a denial of service (lost process messages). This vulnrability is addre
|
11-10-2017 - 01:31 | 14-12-2006 - 00:28 | |
CVE-2007-1524 | 5.0 |
Directory traversal vulnerability in themes/default/ in ZomPlog 3.7.6 and earlier allows remote attackers to include arbitrary local files via a .. (dot dot) in the settings[skin] parameter, as demonstrated by injecting PHP code into an Apache HTTP S
|
10-10-2017 - 01:30 | 20-03-2007 - 20:19 | |
CVE-2006-6610 | 7.5 |
clientcommands in Nexuiz before 2.2.1 has unknown impact and remote attack vectors related to "remote console command injection."
|
29-07-2017 - 01:29 | 18-12-2006 - 02:28 | |
CVE-2006-6609 | 5.0 |
Nexuiz before 2.2.1 allows remote attackers to cause a denial of service (resource exhaustion or crash) via unspecified vectors related to "fake players." NOTE: some of these details are obtained from third party information.
|
29-07-2017 - 01:29 | 18-12-2006 - 02:28 | |
CVE-2006-6607 | 2.7 |
The Java Key Store (JKS) for WebSphere Application Server (WAS) for IBM Tivoli Identity Manager (ITIM) 4.6 places the JKS password in a -Djavax.net.ssl.trustStorePassword command line argument, which allows local users to obtain the password by listi
|
29-07-2017 - 01:29 | 18-12-2006 - 02:28 | |
CVE-2006-6608 | 7.5 |
Unspecified vulnerability in SSH key based authentication in HP Integrated Lights Out (iLO) 1.70 through 1.87, and iLO 2 1.00 through 1.11, on Proliant servers, allows remote attackers to "gain unauthorized access."
|
29-07-2017 - 01:29 | 18-12-2006 - 02:28 | |
CVE-2006-6614 | 1.9 |
The save_log_local function in Fully Automatic Installation (FAI) 2.10.1, and possibly 3.1.2, when verbose mode is enabled, stores the root password hash in /var/log/fai/current/fai.log, whose file permissions allow it to be copied to other hosts whe
|
29-07-2017 - 01:29 | 18-12-2006 - 02:28 | |
CVE-2006-5875 | 6.8 |
eoc.py in Enemies of Carlotta (EoC) before 1.2.4 allows remote attackers to execute arbitrary commands via shell metacharacters in an "SMTP level e-mail address".
|
20-07-2017 - 01:34 | 14-12-2006 - 00:28 | |
CVE-2016-2783 | 10.0 |
Avaya Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) before 4.2.3.0 and 5.x before 5.0.1.0 does not properly handle VLAN and I-SIS indexes, which allows remote attackers to obtain unauthorized access via crafted Ether
|
26-01-2017 - 14:58 | 23-01-2017 - 21:59 |