| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-5749 | 6.8 |
Argument injection vulnerability in Google Chrome 1.0.154.36 on Windows XP SP3 allows remote attackers to execute arbitrary commands via the --renderer-path option in a chromehtml: URI. NOTE: a third party disputes this issue, stating that Chrome "w
|
11-04-2024 - 00:44 | 29-12-2008 - 15:24 | |
| CVE-2016-7423 | 2.1 |
The mptsas_process_scsi_io_request function in QEMU (aka Quick Emulator), when built with LSI SAS1068 Host Bus emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vecto
|
12-02-2023 - 23:25 | 10-10-2016 - 16:59 | |
| CVE-2018-2369 | 5.0 |
Under certain conditions SAP HANA, 1.00, 2.00, allows an unauthenticated attacker to access information which would otherwise be restricted. An attacker can misuse the authentication function of the SAP HANA server on its SQL interface and disclose 8
|
24-08-2020 - 17:37 | 14-02-2018 - 12:29 | |
| CVE-2001-1244 | 5.0 |
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets
|
30-10-2018 - 16:26 | 07-07-2001 - 04:00 | |
| CVE-2007-1509 | 4.3 |
Directory traversal vulnerability in enkrypt.php in Sascha Schroeder krypt (aka Holtstraeter Rot 13) allows remote attackers to read arbitrary files via a .. (dot dot) in the datei parameter.
|
16-10-2018 - 16:38 | 20-03-2007 - 10:19 | |
| CVE-2008-6667 | 7.5 |
A+ PHP Scripts News Management System (NMS) allows remote attackers to bypass authentication and gain administrator privileges by setting the mobsuser and mobspass cookies to 1.
|
29-09-2017 - 01:33 | 08-04-2009 - 10:30 | |
| CVE-2008-6734 | 9.3 |
Directory traversal vulnerability in Public/index.php in Keller Web Admin CMS 0.94 Pro allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the action parameter.
|
29-09-2017 - 01:33 | 21-04-2009 - 18:30 | |
| CVE-2008-5196 | 7.5 |
SQL injection vulnerability in kroax.php in the Kroax (the_kroax) 4.42 and earlier module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the category parameter.
|
29-09-2017 - 01:32 | 21-11-2008 - 17:30 | |
| CVE-2008-5170 | 7.5 |
SQL injection vulnerability in item.php in Cheats Complete Website 1.1.1 allows remote attackers to execute arbitrary SQL commands via the itemid parameter.
|
29-09-2017 - 01:32 | 19-11-2008 - 18:11 | |
| CVE-2008-5167 | 9.3 |
PHP remote file inclusion vulnerability in layout/default/params.php in Boonex Orca 2.0 and 2.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the gConf[dir][layouts] parameter.
|
29-09-2017 - 01:32 | 19-11-2008 - 18:11 | |
| CVE-2008-3505 | 4.3 |
Cross-site scripting (XSS) vulnerability in PolyPager 1.0 rc2 and earlier allows remote attackers to inject arbitrary web script or HTML via the nr parameter to the default URI.
|
29-09-2017 - 01:31 | 06-08-2008 - 18:41 | |
| CVE-2008-3506 | 7.5 |
SQL injection vulnerability in PolyPager 1.0 rc2 and earlier allows remote attackers to execute arbitrary SQL commands via the nr parameter to the default URI.
|
29-09-2017 - 01:31 | 06-08-2008 - 18:41 | |
| CVE-2008-5173 | 9.0 |
Unspecified vulnerability in testMaker before 3.0p16 allows remote authenticated users to execute arbitrary PHP code via unspecified attack vectors.
|
08-08-2017 - 01:33 | 19-11-2008 - 18:11 | |
| CVE-2008-5165 | 7.5 |
Multiple SQL injection vulnerabilities in eTicket 1.5.7 allow remote attackers to execute arbitrary SQL commands via the pri parameter to (1) index.php, (2) open.php, (3) open_raw.php, and (4) newticket.php.
|
08-08-2017 - 01:33 | 19-11-2008 - 18:11 |