| Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-2738 | 6.4 |
Vulnerability in the Oracle Retail Central Office component of Oracle Retail Applications (subcomponent: Security). Supported versions that are affected are 13.4.9, 14.0.4 and 14.1.3. Easily exploitable vulnerability allows unauthenticated attacker w
|
03-10-2019 - 00:03 | 19-04-2018 - 02:29 | |
| CVE-2007-1864 | 7.5 |
Buffer overflow in the bundled libxmlrpc library in PHP before 4.4.7, and 5.x before 5.2.2, has unknown impact and remote attack vectors.
|
22-05-2019 - 18:44 | 09-05-2007 - 00:19 | |
| CVE-2007-2509 | 2.6 |
CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2 allows remote attackers to inject arbitrary FTP commands via CRLF sequences in the parameters to earlier FTP commands.
|
30-10-2018 - 16:25 | 09-05-2007 - 00:19 | |
| CVE-2007-2510 | 5.1 |
Buffer overflow in the make_http_soap_request function in PHP before 5.2.2 has unknown impact and remote attack vectors, possibly related to "/" (slash) characters.
|
30-10-2018 - 16:25 | 09-05-2007 - 00:19 | |
| CVE-2002-0028 | 7.5 |
Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 allows remote attackers to execute arbitrary code via a Voice Video & Games request.
|
10-10-2017 - 01:30 | 27-02-2002 - 05:00 | |
| CVE-2012-2670 | 6.5 |
manageuser.php in Collabtive before 0.7.6 allows remote authenticated users, and possibly unauthenticated attackers, to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Ty
|
29-08-2017 - 01:31 | 17-06-2012 - 03:41 | |
| CVE-2010-5277 | 4.9 |
Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows remote authenticated users with user management permissions to bypass intended access restrictions and delete anonymous users (user 0) via unspecified v
|
29-08-2017 - 01:29 | 07-10-2012 - 20:55 | |
| CVE-2010-0611 | 7.5 |
Multiple SQL injection vulnerabilities in adminlogin.php in Baal Systems 3.8 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
|
17-08-2017 - 01:32 | 11-02-2010 - 17:30 | |
| CVE-2010-0610 | 7.5 |
Multiple SQL injection vulnerabilities in the Photoblog (com_photoblog) component for Joomla! allow remote attackers to execute arbitrary SQL commands via the blog parameter in an images action to index.php. NOTE: a separate vector for the id parame
|
17-08-2017 - 01:32 | 11-02-2010 - 17:30 | |
| CVE-2016-8007 | 3.0 |
Authentication bypass vulnerability in McAfee Host Intrusion Prevention Services (HIPS) 8.0 Patch 7 and earlier allows authenticated users to manipulate the product's registry keys via specific conditions.
|
23-03-2017 - 17:14 | 14-03-2017 - 22:59 | |
| CVE-2009-0138 | 10.0 |
servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration.
|
08-03-2011 - 03:17 | 13-02-2009 - 00:30 |