| Max CVSS | 7.5 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-2870 | 6.4 |
Vulnerability in the Oracle Human Resources component of Oracle E-Business Suite (subcomponent: General Utilities). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnera
|
03-10-2019 - 00:03 | 19-04-2018 - 02:29 | |
| CVE-2007-2540 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in PMECMS 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the config[pathMod] parameter to index.php in (1) mod/image/, (2) mod/liens/, (3) mod/liste/, (4) mod/speci
|
11-10-2017 - 01:32 | 09-05-2007 - 01:19 | |
| CVE-2010-0423 | 5.0 |
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2) chat.
|
19-09-2017 - 01:30 | 24-02-2010 - 18:30 | |
| CVE-2010-0420 | 4.3 |
libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat (MUC) room is used, does not properly parse nicknames containing <br> sequences, which allows remote attackers to cause a denial of service (application crash) via a crafted nick
|
19-09-2017 - 01:30 | 24-02-2010 - 18:30 | |
| CVE-2010-0277 | 5.0 |
slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malf
|
19-09-2017 - 01:30 | 09-01-2010 - 18:30 | |
| CVE-2011-4408 | 6.8 |
The Single Sign On Client (ubuntu-sso-client) for Ubuntu 11.04 and 11.10 does not properly validate SSL certificates when using HTTPS, which allows remote attackers to spoof a server and modify or read sensitive data via a man-in-the-middle (MITM) at
|
29-08-2017 - 01:30 | 16-06-2012 - 00:55 | |
| CVE-2010-0697 | 3.5 |
Cross-site scripting (XSS) vulnerability in the iTweak Upload module 6.x-1.x before 6.x-1.2 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users, with create content and upload file permissions, to inject arbitrary web script or HT
|
17-08-2017 - 01:32 | 23-02-2010 - 20:30 | |
| CVE-2010-0759 | 7.5 |
Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and possibly include and execute, arbitrary files via d
|
17-08-2017 - 01:32 | 27-02-2010 - 00:30 | |
| CVE-2016-6077 | 6.8 |
IBM Cognos Disclosure Management 10.2 could allow a malicious attacker to execute commands as a lower privileged user that opens a malicious document. IBM Reference #: 1991584.
|
17-02-2017 - 17:00 | 15-02-2017 - 19:59 | |
| CVE-2002-0118 | 7.5 |
Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag.
|
04-11-2008 - 05:23 | 25-03-2002 - 05:00 |