| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-5162 | 7.8 |
The image parser in OpenStack Cinder 7.0.2 and 8.0.0 through 8.1.1; Glance before 11.0.1 and 12.0.0; and Nova before 12.0.4 and 13.0.0 does not properly limit qemu-img calls, which might allow attackers to cause a denial of service (memory and disk c
|
13-02-2023 - 00:50 | 07-10-2016 - 14:59 | |
| CVE-2019-7396 | 5.0 |
In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c.
|
28-04-2021 - 17:23 | 05-02-2019 - 00:29 | |
| CVE-2006-0971 | 5.0 |
Directory traversal vulnerability in Lionel Reyero DirectContact 0.3b allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.
|
18-10-2018 - 16:29 | 03-03-2006 - 11:02 | |
| CVE-2011-1290 | 10.0 |
Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246, in Google Chrome before 10.0.648.133, and in Apple Safari before 5.0.5, allows remote attackers to execute arbitrary code via unknown v
|
09-10-2018 - 19:30 | 11-03-2011 - 21:57 | |
| CVE-2014-4976 | 5.5 |
Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi.
|
12-03-2018 - 17:23 | 16-07-2014 - 14:19 | |
| CVE-2014-4977 | 6.5 |
Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new user request to cgi-bin/admin.cgi or the (2) user_i
|
12-03-2018 - 17:23 | 16-07-2014 - 14:19 | |
| CVE-2007-6322 | 5.0 |
Directory traversal vulnerability in filedownload.php in xml2owl 0.1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
|
29-09-2017 - 01:29 | 13-12-2007 - 19:46 | |
| CVE-2016-10140 | 5.0 |
Information disclosure and authentication bypass vulnerability exists in the Apache HTTP Server configuration bundled with ZoneMinder v1.30 and v1.29, which allows a remote unauthenticated attacker to browse all directories in the web root, e.g., a r
|
16-03-2017 - 01:59 | 13-01-2017 - 09:59 | |
| CVE-2003-0095 | 10.0 |
Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own a
|
18-10-2016 - 02:29 | 03-03-2003 - 05:00 | |
| CVE-2014-4743 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in (1) search_ajax.tpl and (2) search_ajax_small.tpl in templates/default/tpl/module_search/ in the Search module (module_search) in Kajona before 4.5 allow remote attackers to inject arbitrary web
|
06-10-2015 - 02:43 | 09-07-2014 - 14:55 |