Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-0253 | 5.0 |
The read_request_line function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) by sending
|
06-06-2021 - 11:15 | 20-07-2015 - 23:59 | |
CVE-2017-2609 | 4.0 |
jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions (SECURITY-385). The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for
|
09-10-2019 - 23:26 | 22-05-2018 - 17:29 | |
CVE-2018-15981 | 10.0 |
Flash Player versions 31.0.0.148 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
|
28-12-2018 - 20:00 | 29-11-2018 - 20:29 | |
CVE-2009-2711 | 4.9 |
XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed
|
19-09-2017 - 01:29 | 07-08-2009 - 19:00 | |
CVE-2010-4353 | 6.0 |
Unrestricted file upload vulnerability in modules/gallery/models/item.php in Menalto Gallery before 3.0 and beta allows remote authenticated users with upload permissions to execute arbitrary code by uploading a file with an executable extension, the
|
17-08-2017 - 01:33 | 25-01-2011 - 01:00 | |
CVE-2007-5291 | 4.3 |
Cross-site scripting (XSS) vulnerability in Edit.asp in DB Manager 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
29-07-2017 - 01:33 | 09-10-2007 - 18:17 | |
CVE-2005-4393 | 4.3 |
Cross-site scripting (XSS) vulnerability in show.cfm in e-publish CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) obcatid and (2) comid parameters.
|
20-07-2017 - 01:29 | 20-12-2005 - 11:03 | |
CVE-2005-4392 | 7.5 |
SQL injection vulnerability in printer_friendly.cfm in e-publish CMS 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
20-07-2017 - 01:29 | 20-12-2005 - 11:03 | |
CVE-2014-0016 | 4.3 |
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attacker
|
26-01-2017 - 20:00 | 24-03-2014 - 16:31 | |
CVE-2002-1905 | 5.0 |
Buffer overflow in the web server of Polycom ViaVideo 2.2 and 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request.
|
05-09-2008 - 20:31 | 31-12-2002 - 05:00 |