| Max CVSS | 7.5 | Min CVSS | 1.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2002-1484 | 7.5 |
DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attempt TCP connections to other systems (port scan) via a request for a URL that specifies the target IP address and port, which produ
|
08-02-2024 - 19:56 | 22-04-2003 - 04:00 | |
| CVE-2014-0064 | 6.5 |
Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact an
|
13-02-2023 - 00:31 | 31-03-2014 - 14:58 | |
| CVE-2018-18517 | 3.5 |
Citrix NetScaler Gateway 10.5.x before 10.5.69.003, 11.1.x before 11.1.59.004, 12.0.x before 12.0.58.7, and 12.1.x before 12.1.49.1 has XSS.
|
06-12-2018 - 15:38 | 24-10-2018 - 21:29 | |
| CVE-2005-3192 | 7.5 |
Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, and (4) pdftohtml, (5) KOffice KWord, (6) CUPS, and (7) libextractor allows remote attackers to execute arbitra
|
19-10-2018 - 15:35 | 08-12-2005 - 01:03 | |
| CVE-2007-5038 | 7.5 |
The offer_account_by_email function in User.pm in the WebService for Bugzilla before 3.0.2, and 3.1.x before 3.1.2, does not check the value of the createemailregexp parameter, which allows remote attackers to bypass intended restrictions on account
|
15-10-2018 - 21:40 | 24-09-2007 - 00:17 | |
| CVE-2009-3860 | 5.8 |
Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote attackers to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurati
|
10-10-2018 - 19:47 | 04-11-2009 - 17:30 | |
| CVE-2012-5876 | 5.0 |
Multiple off-by-one errors in NMMediaServerService.dll in Nero MediaHome 4.5.8.0 and earlier allow remote attackers to cause a denial of service (crash) via a long string in the (1) request line or (2) HTTP Referer header to TCP port 54444, which tri
|
29-08-2017 - 01:32 | 30-05-2014 - 14:55 | |
| CVE-2012-5877 | 5.0 |
Nero MediaHome 4.5.8.0 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an HTTP header without a name. Per http://cwe.mitre.org/data/definitions/476.html
"CWE-476: NULL Pointer Dereference"
|
29-08-2017 - 01:32 | 30-05-2014 - 14:55 | |
| CVE-2017-2364 | 4.3 |
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive informatio
|
16-08-2017 - 01:29 | 20-02-2017 - 08:59 | |
| CVE-2013-0743 | 5.0 |
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA at the suggestion of the CVE project team. The candidate had been associated with a correct report of a security problem, but not a p
|
16-12-2016 - 02:59 | 25-01-2013 - 18:55 | |
| CVE-2015-3449 | 7.2 |
The Windows client in SAP Afaria 7.0.6398.0 uses weak permissions (Everyone: read and Everyone: write) for the install folder, which allows local users to gain privileges via a Trojan horse XeService.exe file.
|
06-12-2016 - 03:01 | 16-07-2015 - 14:59 | |
| CVE-2012-5616 | 1.5 |
Apache CloudStack 4.0.0-incubating and Citrix CloudPlatform (formerly Citrix CloudStack) before 3.0.6 stores sensitive information in the log4j.conf log file, which allows local users to obtain (1) the SSH private key as recorded by the createSSHKeyP
|
02-04-2013 - 03:21 | 22-01-2013 - 23:55 |