| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-18566 | 5.0 |
The SIP service in Polycom VVX 500 and 601 devices 5.8.0.12848 and earlier allow remote attackers to obtain sensitive phone configuration information by leveraging use with an on-premise installation with Skype for Business.
|
15-06-2021 - 15:04 | 24-10-2018 - 22:29 | |
| CVE-2017-5511 | 7.5 |
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
|
04-11-2017 - 01:29 | 24-03-2017 - 15:59 | |
| CVE-2007-5062 | 7.5 |
account.php in Adam Scheinberg Flip 3.0 and earlier allows remote attackers to create administrative accounts via the un parameter in a register action.
|
29-09-2017 - 01:29 | 24-09-2007 - 22:17 | |
| CVE-2009-4690 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) rate.php and (2) postcomments.php.
|
17-08-2017 - 01:31 | 10-03-2010 - 22:30 | |
| CVE-2002-1129 | 7.2 |
Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument.
|
18-10-2016 - 02:23 | 04-10-2002 - 04:00 | |
| CVE-2014-2092 | 4.3 |
Cross-site scripting (XSS) vulnerability in lib/filemanager/ImageManager/editorFrame.php in CMS Made Simple 1.11.10 allows remote attackers to inject arbitrary web script or HTML via the action parameter, a different issue than CVE-2014-0334. NOTE:
|
13-08-2015 - 18:23 | 02-03-2014 - 17:55 | |
| CVE-2005-4054 | 7.5 |
SQL injection vulnerability in index.php in PluggedOut Blog 1.9.5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categoryid, (2) entryid, (3) year, (4) month, and (5) day parameter.
|
08-03-2011 - 02:27 | 07-12-2005 - 11:03 |