| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-3175 | 10.0 |
Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a
|
08-04-2021 - 13:31 | 01-08-2008 - 14:41 | |
| CVE-2018-6952 | 5.0 |
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.
|
17-04-2019 - 20:29 | 13-02-2018 - 19:29 | |
| CVE-2008-3422 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net class libraries in Mono 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted attributes related to (1) HtmlControl.cs (PreProcessRelativeReference
|
03-10-2018 - 21:55 | 31-07-2008 - 21:41 | |
| CVE-2001-0975 | 7.5 |
Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
|
19-12-2017 - 02:29 | 16-07-2001 - 04:00 | |
| CVE-2008-3489 | 7.5 |
SQL injection vulnerability in checkCookie function in includes/functions.inc.php in PHPX 3.5.16 allows remote attackers to execute arbitrary SQL commands via a PXL cookie.
|
29-09-2017 - 01:31 | 06-08-2008 - 17:41 | |
| CVE-2008-3591 | 7.5 |
SQL injection vulnerability in lib/class.admin.php in Twentyone Degrees Symphony 1.7.01 and earlier allows remote attackers to execute arbitrary SQL commands via the sym_auth cookie in a /publish/filemanager/ request to index.php.
|
29-09-2017 - 01:31 | 11-08-2008 - 23:41 | |
| CVE-2010-1807 | 9.3 |
WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2; Android before 2.2; and webkitgtk before 1.2.6; does not properly validate floating-point data, which allows remote attackers to execute arbitrary code or cause a denial of service (applic
|
19-09-2017 - 01:30 | 10-09-2010 - 19:00 | |
| CVE-2012-2112 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Exception Handler in TYPO3 4.4.x before 4.4.15, 4.5.x before 4.5.15, 4.6.x before 4.6.8, and 4.7 allows remote attackers to inject arbitrary web script or HTML via exception messages.
|
29-08-2017 - 01:31 | 27-08-2012 - 21:55 | |
| CVE-2008-1810 | 4.4 |
Untrusted search path vulnerability in dbmsrv in SAP MaxDB 7.6.03.15 on Linux allows local users to gain privileges via a modified PATH environment variable.
|
08-08-2017 - 01:30 | 01-08-2008 - 14:41 | |
| CVE-2008-2235 | 4.9 |
OpenSC before 0.11.5 uses weak permissions (ADMIN file control information of 00) for the 5015 directory on smart cards and USB crypto tokens running Siemens CardOS M4, which allows physically proximate attackers to change the PIN.
|
08-08-2017 - 01:30 | 01-08-2008 - 14:41 | |
| CVE-2007-1542 | 5.0 |
Unspecified vulnerability in the Cisco IP Phone 7940 and 7960 running firmware before POS8-6-0 allows remote attackers to cause a denial of service via the Remote-Party-ID sipURI field in a SIP INVITE request. NOTE: the provenance of this information
|
29-07-2017 - 01:30 | 20-03-2007 - 22:19 |