Max CVSS | 7.5 | Min CVSS | 1.2 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-5749 | 1.7 |
The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4 does not call the init_timer function for the ISDN PPP CCP reset state timer, which has unknown attack vectors and results in a system cr
|
13-02-2023 - 02:16 | 31-12-2006 - 05:00 | |
CVE-2007-0121 | 6.8 |
Cross-site scripting (XSS) vulnerability in search.asp in RI Blog 1.3 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
|
16-10-2018 - 16:31 | 09-01-2007 - 02:28 | |
CVE-2007-0140 | 7.5 |
SQL injection vulnerability in down.asp in Kolayindir Download (Yenionline) allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
16-10-2018 - 16:31 | 09-01-2007 - 18:28 | |
CVE-2017-14589 | 6.8 |
It was possible for double OGNL evaluation in FreeMarker templates through Struts FreeMarker tags to occur. An attacker who has restricted administration rights to Bamboo or who hosts a website that a Bamboo administrator visits, is able to exploit t
|
10-01-2018 - 23:43 | 13-12-2017 - 15:29 | |
CVE-2005-0022 | 4.6 |
Buffer overflow in the spa_base64_to_bits function in Exim before 4.43, as originally obtained from Samba code, and as called by the auth_spa_client function, may allow attackers to execute arbitrary code during SPA authentication.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2001-0116 | 1.2 |
gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.
|
10-10-2017 - 01:29 | 12-03-2001 - 05:00 | |
CVE-2008-5803 | 7.5 |
SQL injection vulnerability in admin/login.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the user parameter (aka username field). NOTE: some of these details are obtained from third party information.
|
29-09-2017 - 01:32 | 31-12-2008 - 11:30 | |
CVE-2007-0023 | 6.9 |
The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home di
|
29-07-2017 - 01:29 | 24-01-2007 - 01:28 | |
CVE-2007-0108 | 6.0 |
nwgina.dll in Novell Client 4.91 SP3 for Windows 2000/XP/2003 does not delete user profiles during a Terminal Service or Citrix session, which allows remote authenticated users to invoke alternate user profiles.
|
29-07-2017 - 01:29 | 09-01-2007 - 00:28 | |
CVE-2007-0137 | 6.8 |
Cross-site scripting (XSS) vulnerability in SimpleBoxes/SerendipityNZ Serene Bach 2.05R and earlier, and 2.08D and earlier in the 2.08 series; and (2) sb 1.13D and earlier, and 1.18R and earlier in the 1.18 series; allows remote attackers to inject a
|
29-07-2017 - 01:29 | 09-01-2007 - 11:28 | |
CVE-2006-6870 | 5.0 |
The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself. This vulnerability is addressed in t
|
08-03-2011 - 02:47 | 31-12-2006 - 05:00 |