| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-0907 | 6.8 |
Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, Microsoft Excel 2013 SP1, Microsoft Excel 2016, Microsoft Office 2016 Click-to-Run and Microsoft Office 2016 for Mac allow a security feature bypass vulnerability due to how macro settings are enfor
|
03-10-2019 - 00:03 | 14-03-2018 - 17:29 | |
| CVE-2009-0428 | 7.5 |
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Secure Document Library 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
19-10-2017 - 01:30 | 05-02-2009 - 00:30 | |
| CVE-2009-0426 | 7.5 |
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
19-10-2017 - 01:30 | 05-02-2009 - 00:30 | |
| CVE-2009-0427 | 7.5 |
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Member Directory Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
19-10-2017 - 01:30 | 05-02-2009 - 00:30 | |
| CVE-2009-0335 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to inject arbitrary web script or HTML via the view parameter.
|
29-09-2017 - 01:33 | 29-01-2009 - 18:30 | |
| CVE-2009-0334 | 7.5 |
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the day parameter in an archive action.
|
29-09-2017 - 01:33 | 29-01-2009 - 18:30 | |
| CVE-2010-4945 | 7.5 |
SQL injection vulnerability in the CamelcityDB (com_camelcitydb2) component 2.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
|
29-08-2017 - 01:29 | 09-10-2011 - 10:55 | |
| CVE-2009-0173 | 5.0 |
Unspecified vulnerability in the server in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote authenticated users to cause a denial of service (trap) via a crafted data stream.
|
08-08-2017 - 01:33 | 16-01-2009 - 21:30 | |
| CVE-2009-0172 | 5.0 |
Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream.
|
08-08-2017 - 01:33 | 16-01-2009 - 21:30 | |
| CVE-2007-1879 | 9.3 |
The StartUploading function in KL.SysInfo ActiveX control (AxKLSysInfo.dll) in Kaspersky Anti-Virus 6.0 and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to read arbitrary files by triggering an outbound anon
|
29-07-2017 - 01:31 | 06-04-2007 - 00:19 | |
| CVE-2001-1446 | 7.5 |
Find-By-Content in Mac OS X 10.0 through 10.0.4 creates world-readable index files named .FBCIndex in every directory, which allows remote attackers to learn the contents of files in web accessible directories. It is reported that this issue is addre
|
11-07-2017 - 01:29 | 11-09-2001 - 04:00 | |
| CVE-2016-5700 | 9.3 |
Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF4, and 12.1.0 before HF2, when configured with the HTTP Explicit Proxy functionality or SOCKS pr
|
28-11-2016 - 20:28 | 03-10-2016 - 16:09 | |
| CVE-2005-1285 | 6.8 |
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the hilight parameter.
|
18-10-2016 - 03:18 | 22-04-2005 - 04:00 | |
| CVE-2009-0219 | 9.3 |
The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uniniti
|
05-02-2009 - 06:53 | 21-01-2009 - 01:30 |