| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2001-0322 | 5.0 |
MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote attackers to cause a denial of service (application crash) via a script that creates and deletes an object that is associated with the browser window object.
|
22-07-2021 - 13:53 | 02-06-2001 - 04:00 | |
| CVE-2017-17682 | 7.1 |
In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted wpg image file that triggers a ReadWPGImage call.
|
08-09-2020 - 00:15 | 14-12-2017 - 06:29 | |
| CVE-2007-0298 | 6.8 |
PHP remote file inclusion vulnerability in show.php in LunarPoll, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the PollDir parameter.
|
16-10-2018 - 16:32 | 17-01-2007 - 11:28 | |
| CVE-2007-0222 | 5.0 |
Directory traversal vulnerability in the EmChartBean server side component for Oracle Application Server 10g allows remote attackers to read arbitrary files via unknown vectors, probably "\.." sequences in the beanId parameter. NOTE: this is likely
|
16-10-2018 - 16:31 | 17-01-2007 - 01:28 | |
| CVE-2007-0261 | 10.0 |
snews.php in sNews 1.5.30 and earlier does not properly exit when authentication fails, which allows remote attackers to perform unauthorized administrative actions, as demonstrated by changing an administrative password via the changeup task, and by
|
19-10-2017 - 01:29 | 16-01-2007 - 23:28 | |
| CVE-2007-0300 | 6.8 |
PHP remote file inclusion vulnerability in i-accueil.php in TLM CMS 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter. Successful exploitation requires that "register_globals" is enabled.
|
19-10-2017 - 01:29 | 18-01-2007 - 00:28 | |
| CVE-2008-5049 | 7.2 |
Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC
|
29-09-2017 - 01:32 | 13-11-2008 - 02:30 | |
| CVE-2008-5048 | 7.2 |
Buffer overflow in Atepmon.sys in ISecSoft Anti-Trojan Elite 4.2.1 and earlier, and possibly 4.2.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long inputs to the 0x00222494 IOCTL.
|
08-08-2017 - 01:33 | 13-11-2008 - 02:30 | |
| CVE-2007-0507 | 6.0 |
SQL injection vulnerability in the Acidfree module for Drupal before 4.6.x-1.0, and before 4.7.x-1.0 in the 4.7 series, allows remote authenticated users with "create acidfree albums" privileges to execute arbitrary SQL commands via node titles.
|
29-07-2017 - 01:30 | 26-01-2007 - 00:28 | |
| CVE-2006-6922 | 7.5 |
SQL injection vulnerability in Deadlock User Management System (phpdeadlock) 0.64 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
08-03-2011 - 02:47 | 13-01-2007 - 02:28 | |
| CVE-2007-0264 | 6.6 |
Buffer overflow in Winzip32.exe in WinZip 9.0 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long command line argument. NOTE: this issue may cross privilege boundaries if an application
|
15-11-2008 - 06:39 | 16-01-2007 - 23:28 |