| Max CVSS | 6.9 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-1643 | 6.9 |
mm/shmem.c in the Linux kernel before 2.6.28-rc3, when strict overcommit is enabled, does not properly handle the export of shmemfs objects by knfsd, which allows attackers to cause a denial of service (NULL pointer dereference and knfsd crash) or po
|
13-02-2023 - 04:19 | 03-06-2010 - 14:30 | |
| CVE-2010-1634 | 5.0 |
Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with
|
13-02-2023 - 04:18 | 27-05-2010 - 19:30 | |
| CVE-2018-8124 | 6.9 |
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows
|
03-10-2019 - 00:03 | 09-05-2018 - 19:29 | |
| CVE-2010-5052 | 4.3 |
Cross-site scripting (XSS) vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val[] parameter.
|
30-10-2018 - 16:27 | 23-11-2011 - 01:55 | |
| CVE-2007-2757 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in Redoable 1.2 allow remote attackers to inject arbitrary web script or HTML via the s parameter to (1) wp-content/themes/redoable/searchloop.php or (2) wp-content/themes/redoable/header.php.
|
16-10-2018 - 16:45 | 18-05-2007 - 22:30 | |
| CVE-2016-7249 | 6.5 |
Microsoft SQL Server 2016 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability."
|
12-10-2018 - 22:14 | 10-11-2016 - 07:00 | |
| CVE-2010-5051 | 4.3 |
Cross-site scripting (XSS) vulnerability in admin/core/admin_func.php in razorCMS 1.0 stable allows remote attackers to inject arbitrary web script or HTML via the content parameter in an edit action to admin/index.php.
|
10-10-2018 - 20:08 | 23-11-2011 - 01:55 | |
| CVE-2002-0566 | 5.0 |
PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to cause a denial of service (crash) via an HTTP Authorization header without an authentication type.
|
03-05-2018 - 01:29 | 03-07-2002 - 04:00 | |
| CVE-2009-4887 | 6.8 |
PHP remote file inclusion vulnerability in index.php in CMS S.Builder 3.7 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in a binn_include_path cookie. NOTE: this can also be leveraged
|
19-09-2017 - 01:30 | 11-06-2010 - 14:30 | |
| CVE-2010-2090 | 5.0 |
The npb_protocol_error function in sna V5router64 in IBM Communications Server for Windows 6.1.3 and Communications Server for AIX (aka CSAIX or CS/AIX) in sna.rte before 6.3.1.2 allows remote attackers to cause a denial of service (daemon crash) via
|
17-08-2017 - 01:32 | 27-05-2010 - 19:30 | |
| CVE-2010-1959 | 5.0 |
Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors.
|
29-05-2010 - 05:47 | 27-05-2010 - 19:30 |