Max CVSS 10.0 Min CVSS 4.0 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2015-0253 5.0
The read_request_line function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) by sending
06-06-2021 - 11:15 20-07-2015 - 23:59
CVE-2017-2609 4.0
jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions (SECURITY-385). The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for
09-10-2019 - 23:26 22-05-2018 - 17:29
CVE-2018-15981 10.0
Flash Player versions 31.0.0.148 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
28-12-2018 - 20:00 29-11-2018 - 20:29
CVE-2009-2711 4.9
XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed
19-09-2017 - 01:29 07-08-2009 - 19:00
CVE-2010-4353 6.0
Unrestricted file upload vulnerability in modules/gallery/models/item.php in Menalto Gallery before 3.0 and beta allows remote authenticated users with upload permissions to execute arbitrary code by uploading a file with an executable extension, the
17-08-2017 - 01:33 25-01-2011 - 01:00
CVE-2007-5291 4.3
Cross-site scripting (XSS) vulnerability in Edit.asp in DB Manager 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
29-07-2017 - 01:33 09-10-2007 - 18:17
CVE-2005-4393 4.3
Cross-site scripting (XSS) vulnerability in show.cfm in e-publish CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) obcatid and (2) comid parameters.
20-07-2017 - 01:29 20-12-2005 - 11:03
CVE-2005-4392 7.5
SQL injection vulnerability in printer_friendly.cfm in e-publish CMS 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
20-07-2017 - 01:29 20-12-2005 - 11:03
CVE-2014-0016 4.3
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attacker
26-01-2017 - 20:00 24-03-2014 - 16:31
CVE-2002-1905 5.0
Buffer overflow in the web server of Polycom ViaVideo 2.2 and 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request.
05-09-2008 - 20:31 31-12-2002 - 05:00
Back to Top Mark selected
Back to Top