| Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2001-0949 | 7.5 |
Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 allows remote attackers to execute arbitrary code via long arguments to the parameters (1) Mode, (2) Certificate_File,
|
14-02-2024 - 01:17 | 04-12-2001 - 05:00 | |
| CVE-2016-5573 | 6.8 |
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.
|
13-05-2022 - 14:57 | 25-10-2016 - 14:30 | |
| CVE-2018-0957 | 1.9 |
An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Information Disclosure Vulnerability." This affects W
|
24-08-2020 - 17:37 | 12-04-2018 - 01:29 | |
| CVE-2009-2519 | 9.3 |
The DHTML Editing Component ActiveX control in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly format HTML markup, which allows remote attackers to execute arbitrary code via a crafted web site that triggers "system
|
26-02-2019 - 14:04 | 08-09-2009 - 22:30 | |
| CVE-2005-1619 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in (1) start_page.css.php3 (aka start-page.css.php3) or (2) style.css.php3 in PHPMyChat 0.14.5 allow remote attackers to inject arbitrary web script or HTML commands via the FontName parameter. NOT
|
19-10-2018 - 15:31 | 16-05-2005 - 04:00 | |
| CVE-2007-2214 | 7.5 |
Unrestricted file upload vulnerability in includes/upload_file.php in DmCMS allows remote attackers to upload arbitrary PHP scripts by placing a script's contents in both the File2 and File3 parameters, and sending a ok.php?do=act Referer.
|
16-10-2018 - 16:42 | 24-04-2007 - 20:19 | |
| CVE-2009-4470 | 7.5 |
SQL injection vulnerability in boardrule.php in DVBBS 2.0 allows remote attackers to execute arbitrary SQL commands via the groupboardid parameter.
|
10-10-2018 - 19:49 | 30-12-2009 - 21:30 | |
| CVE-2009-4834 | 6.8 |
lib.php in Zeroboard 4.1 pl7 allows remote attackers to execute arbitrary PHP code via a crafted parameter name, possibly related to now_connect.php.
|
19-09-2017 - 01:30 | 04-05-2010 - 16:00 | |
| CVE-2009-4474 | 7.5 |
SQL injection vulnerability in the Mike de Boer zoom (com_zoom) component 2.0 for Mambo allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
|
19-09-2017 - 01:29 | 30-12-2009 - 21:30 | |
| CVE-2009-4475 | 7.5 |
SQL injection vulnerability in the Joomlub (com_joomlub) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an auction edit action to index.php.
|
19-09-2017 - 01:29 | 30-12-2009 - 21:30 | |
| CVE-2009-3569 | 9.3 |
Stack-based buffer overflow in OpenOffice.org (OOo) allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side stack overflow exploit." NOTE: as
|
17-08-2016 - 18:13 | 06-10-2009 - 20:30 | |
| CVE-2009-3571 | 9.3 |
Unspecified vulnerability in OpenOffice.org (OOo) has unknown impact and client-side attack vector, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side exploit." NOTE: as of 20091005, this disclosure has no action
|
24-11-2015 - 18:07 | 06-10-2009 - 20:30 | |
| CVE-2009-3570 | 10.0 |
Unspecified vulnerability in OpenOffice.org (OOo) has unspecified impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.9. NOTE: as of 20091005, this disclosure has no actionable information. However,
|
24-11-2015 - 18:07 | 06-10-2009 - 20:30 |