| Max CVSS | 7.8 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-15692 | 7.5 |
In Apache Geode before v1.4.0, the TcpServer within the Geode locator opens a network port that deserializes data. If an unprivileged user gains access to the Geode locator, they may be able to cause remote code execution if certain classes are prese
|
23-03-2018 - 15:20 | 27-02-2018 - 15:29 | |
| CVE-2012-2416 | 6.5 |
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.11.1 and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4, when the trustrpid option is enabled, allows remote authenticated users to cause a denial of
|
14-12-2017 - 02:29 | 30-04-2012 - 20:55 | |
| CVE-2007-1791 | 7.5 |
SQL injection vulnerability in wall.php in Picture-Engine 1.2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
11-10-2017 - 01:31 | 31-03-2007 - 10:19 | |
| CVE-2008-6269 | 7.5 |
Joovili 3.1.4 allows remote attackers to bypass authentication and gain privileges as other users, including the administrator, by setting the (1) session_id, session_logged_in, and session_username cookies for user privileges; (2) session_admin_id,
|
29-09-2017 - 01:33 | 25-02-2009 - 11:30 | |
| CVE-2008-6721 | 7.5 |
SQL injection vulnerability in index.php in AJ Square AJ Article allows remote attackers to execute arbitrary SQL commands via the txtName parameter (aka the username field).
|
29-09-2017 - 01:33 | 14-04-2009 - 16:26 | |
| CVE-2008-4887 | 7.5 |
SQL injection vulnerability in index.php in NetRisk 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter in a (1) profile page (profile.php) or (2) game page (game.php). NOTE: some of these details are obtai
|
29-09-2017 - 01:32 | 04-11-2008 - 00:57 | |
| CVE-2008-4883 | 7.5 |
SQL injection vulnerability in tr.php in YourFreeWorld Blog Blaster Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:32 | 04-11-2008 - 00:57 | |
| CVE-2008-4888 | 4.3 |
Cross-site scripting (XSS) vulnerability in error.php in NetRisk 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter to index.php. NOTE: some of these details are obtained from third party informati
|
29-09-2017 - 01:32 | 04-11-2008 - 00:57 | |
| CVE-2008-4882 | 7.5 |
SQL injection vulnerability in tr.php in YourFreeWorld Autoresponder Hosting Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:32 | 04-11-2008 - 00:57 | |
| CVE-2008-4893 | 2.6 |
Cross-site scripting (XSS) vulnerability in templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php in Tribiq CMS 5.0.10a, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the template_path p
|
08-08-2017 - 01:32 | 04-11-2008 - 00:58 | |
| CVE-2016-6379 | 7.8 |
Cisco IOS 12.2 and IOS XE 3.14 through 3.16 and 16.1 allow remote attackers to cause a denial of service (device reload) via crafted IP Detail Record (IPDR) packets, aka Bug ID CSCuu35089.
|
30-07-2017 - 01:29 | 05-10-2016 - 20:59 | |
| CVE-2001-1145 | 6.2 |
fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to p
|
10-09-2008 - 19:09 | 17-08-2001 - 04:00 |