| Max CVSS | 10.0 | Min CVSS | 3.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-0849 | 7.5 |
Stack-based buffer overflow in the DtbClsLogin function in NovaStor NovaNET 12 allows remote attackers to (1) execute arbitrary code on Linux platforms via a long username field during backup domain authentication, related to libnnlindtb.so; or (2) c
|
14-02-2024 - 01:17 | 09-03-2009 - 17:30 | |
| CVE-2009-0834 | 3.6 |
The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass
|
26-08-2020 - 12:57 | 06-03-2009 - 11:30 | |
| CVE-2012-0779 | 9.3 |
Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attackers to execute arbitrary code via a crafted file, r
|
18-07-2019 - 12:21 | 04-05-2012 - 19:55 | |
| CVE-2016-7182 | 10.0 |
The Graphics component in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Sk
|
12-10-2018 - 22:14 | 14-10-2016 - 02:59 | |
| CVE-2009-0814 | 4.3 |
Cross-site scripting (XSS) vulnerability in Widgets.aspx in Blogsa 1.0 Beta 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchText parameter.
|
10-10-2018 - 19:31 | 05-03-2009 - 02:30 | |
| CVE-2018-4924 | 10.0 |
Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
|
22-06-2018 - 13:46 | 19-05-2018 - 17:29 | |
| CVE-2009-0885 | 9.3 |
Multiple heap-based buffer overflows in Media Commands 1.0 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in a (1) M3U, (2) M3l, (3) TXT, and (4) LRC playlist file.
|
29-09-2017 - 01:34 | 12-03-2009 - 15:20 | |
| CVE-2009-4808 | 7.5 |
admin.php in Graugon PHP Article Publisher 1.0 allows remote attackers to bypass authentication and obtain administrative access by setting the g_admin cookie to 1.
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2009-4807 | 7.5 |
Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) c parameter to index.php and the (2) id parameter to view.php.
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2008-5910 | 7.2 |
Unspecified vulnerability in txzonemgr in Sun OpenSolaris has unknown impact and local attack vectors, related to a "Temporary file vulnerability," aka Bug ID 6653462.
|
08-08-2017 - 01:33 | 16-01-2009 - 21:30 | |
| CVE-2007-2013 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in JEx-Treme Einfacher Passworschutz allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
|
29-07-2017 - 01:31 | 12-04-2007 - 19:19 | |
| CVE-2005-1364 | 7.5 |
Multiple SQL injection vulnerabilities in MetaBid Auctions allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password fields in logIn.asp, or (3) intAuctionID parameter to item.asp.
|
11-07-2017 - 01:32 | 02-05-2005 - 04:00 | |
| CVE-2001-1235 | 7.5 |
pSlash PHP script 0.7 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable.
|
10-09-2008 - 19:09 | 02-10-2001 - 04:00 |