| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-8148 | 9.3 |
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Excel. This CVE
|
24-08-2020 - 17:37 | 09-05-2018 - 19:29 | |
| CVE-2002-0049 | 6.4 |
Microsoft Exchange Server 2000 System Attendant gives "Everyone" group privileges to the WinReg key, which could allow remote attackers to read or modify registry keys.
|
02-04-2020 - 12:38 | 08-03-2002 - 05:00 | |
| CVE-2016-7198 | 7.6 |
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different
|
12-10-2018 - 22:14 | 10-11-2016 - 06:59 | |
| CVE-2010-1252 | 9.3 |
Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Excel file, aka "Excel String Variable Vulnerability."
|
12-10-2018 - 21:57 | 08-06-2010 - 20:30 | |
| CVE-2010-1254 | 6.9 |
The installation for Microsoft Open XML File Format Converter for Mac sets insecure ACLs for the /Applications folder, which allows local users to execute arbitrary code by replacing the executable with a Trojan Horse, aka "Mac Office Open XML Permis
|
12-10-2018 - 21:57 | 08-06-2010 - 20:30 | |
| CVE-2010-1646 | 6.2 |
The secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and 1.7.0 through 1.7.2p6 does not properly handle an environment that contains multiple PATH variables, which might allow local users to gain privileges via a crafted value of the last
|
10-10-2018 - 19:57 | 07-06-2010 - 17:12 | |
| CVE-2007-2787 | 7.5 |
Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.
|
11-10-2017 - 01:32 | 21-05-2007 - 23:30 | |
| CVE-2015-3299 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Floating Social Bar plugin before 1.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via vectors related to original service order.
|
25-09-2017 - 21:27 | 19-09-2017 - 15:29 | |
| CVE-2010-1962 | 10.0 |
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5 before 5.2.1.870.0 allows remote attackers to execute arbitrary code via unknown vectors.
|
17-08-2017 - 01:32 | 07-06-2010 - 17:12 | |
| CVE-2010-5286 | 10.0 |
Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
|
27-11-2012 - 05:00 | 26-11-2012 - 23:55 | |
| CVE-2010-2318 | 4.3 |
Cross-site scripting (XSS) vulnerability in cms_data.php in PHPCityPortal 1.3 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
18-06-2010 - 04:00 | 17-06-2010 - 16:30 |