| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2001-0949 | 7.5 |
Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 allows remote attackers to execute arbitrary code via long arguments to the parameters (1) Mode, (2) Certificate_File,
|
14-02-2024 - 01:17 | 04-12-2001 - 05:00 | |
| CVE-2018-1032 | 3.5 |
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects
|
03-10-2019 - 00:03 | 12-04-2018 - 01:29 | |
| CVE-2009-2202 | 9.3 |
Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted H.264 movie file.
|
30-10-2018 - 16:25 | 10-09-2009 - 21:30 | |
| CVE-2009-2203 | 9.3 |
Buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG-4 video file.
|
30-10-2018 - 16:25 | 10-09-2009 - 21:30 | |
| CVE-2009-2798 | 9.3 |
Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file.
|
30-10-2018 - 16:25 | 10-09-2009 - 21:30 | |
| CVE-2009-2799 | 9.3 |
Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie file.
|
30-10-2018 - 16:25 | 10-09-2009 - 21:30 | |
| CVE-2007-2271 | 9.4 |
Directory traversal vulnerability in Rajneel Lal TotaRam USP FOSS Distribution 1.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the dnld parameter.
|
11-10-2017 - 01:32 | 25-04-2007 - 20:19 | |
| CVE-2009-4620 | 7.5 |
SQL injection vulnerability in the Joomloc (com_joomloc) component 1.0 for Joomla allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit task to index.php.
|
19-09-2017 - 01:30 | 18-01-2010 - 20:30 | |
| CVE-2009-4628 | 7.5 |
SQL injection vulnerability in the TemplatePlaza.com TPDugg (com_tpdugg) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a tags action to index.php.
|
19-09-2017 - 01:30 | 18-01-2010 - 20:30 | |
| CVE-2009-3364 | 9.3 |
Stack-based buffer overflow in FTPShell Client 4.1 RC2 allows remote FTP servers to execute arbitrary code via a long response to a PASV command.
|
19-09-2017 - 01:29 | 24-09-2009 - 16:30 | |
| CVE-2009-3363 | 4.3 |
Cross-site scripting (XSS) vulnerability in the BUEditor module 5.x before 5.x-1.2 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via input to the "plain textarea editor."
|
17-08-2017 - 01:31 | 24-09-2009 - 16:30 | |
| CVE-2016-5580 | 5.5 |
Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.7 and 5.2 allows remote authenticated users to affect confidentiality and availability via vectors through Web Services.
|
28-11-2016 - 20:27 | 25-10-2016 - 14:30 | |
| CVE-2009-3350 | 10.0 |
Multiple unspecified vulnerabilities in the Subdomain Manager module for Drupal have unknown impact and attack vectors.
|
12-10-2009 - 04:00 | 24-09-2009 - 16:30 | |
| CVE-2009-3353 | 10.0 |
Multiple unspecified vulnerabilities in the Node2Node module for Drupal have unknown impact and attack vectors.
|
29-09-2009 - 04:00 | 24-09-2009 - 16:30 | |
| CVE-2009-3351 | 10.0 |
Multiple unspecified vulnerabilities in the Node Browser module for Drupal have unknown impact and attack vectors.
|
24-09-2009 - 16:30 | 24-09-2009 - 16:30 |