Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-3070 | 4.3 |
Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to an arbitrary PHP script that uses NuSOAP classes.
|
13-02-2023 - 04:21 | 28-09-2010 - 18:00 | |
CVE-2015-8833 | 10.0 |
Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate
|
04-08-2021 - 13:11 | 12-04-2016 - 01:59 | |
CVE-2010-4899 | 7.5 |
SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
10-10-2018 - 20:08 | 08-10-2011 - 10:55 | |
CVE-2007-3052 | 7.5 |
SQL injection vulnerability in index.php in the PNphpBB2 1.2i and earlier module for PostNuke allows remote attackers to execute arbitrary SQL commands via the c parameter.
|
11-10-2017 - 01:32 | 06-06-2007 - 01:30 | |
CVE-2009-1209 | 9.3 |
Stack-based buffer overflow in W3C Amaya Web Browser 11.1 allows remote attackers to execute arbitrary code via a script tag with a long defer attribute.
|
29-09-2017 - 01:34 | 01-04-2009 - 10:30 | |
CVE-2002-0454 | 5.0 |
Qpopper (aka in.qpopper or popper) 4.0.3 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a very large string, which causes an infinite loop.
|
05-09-2008 - 20:28 | 12-08-2002 - 04:00 |