| Max CVSS | 9.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2003-0772 | 7.5 |
Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.
|
11-10-2023 - 14:45 | 22-09-2003 - 04:00 | |
| CVE-2016-2187 | 4.9 |
The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device desc
|
12-09-2023 - 14:45 | 02-05-2016 - 10:59 | |
| CVE-2017-6643 | 5.0 |
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to access sensitive Virtual Directory information on an affected system. The vulnerability exists because the affected
|
09-10-2019 - 23:28 | 22-05-2017 - 01:29 | |
| CVE-2008-1649 | 4.3 |
Cross-site scripting (XSS) vulnerability in staticpages/easypublish/index.php in EasyNews 4.0 allows remote attackers to inject arbitrary web script or HTML via the read parameter in an edp_pupublish action. Additional information may be found at:
|
11-10-2018 - 20:35 | 02-04-2008 - 17:44 | |
| CVE-2008-1650 | 7.5 |
SQL injection vulnerability in dynamicpages/index.php in EasyNews 4.0 allows remote attackers to execute arbitrary SQL commands via the read parameter in an edp_Help_Internal_News action. Additional information can be found at:
http://www.security
|
11-10-2018 - 20:35 | 02-04-2008 - 17:44 | |
| CVE-2008-1651 | 7.5 |
Directory traversal vulnerability in admin/login.php in EasyNews 4.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter. Additional information can be found at:
http://www.securityfocus.co
|
11-10-2018 - 20:35 | 02-04-2008 - 17:44 | |
| CVE-2010-1275 | 4.3 |
Cross-site scripting (XSS) vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter.
|
10-10-2018 - 19:56 | 06-04-2010 - 16:30 | |
| CVE-2014-2606 | 9.0 |
Unspecified vulnerability in HP StoreVirtual 4000 Storage and StoreVirtual VSA 9.5 through 11.0 allows remote authenticated users to gain privileges via unknown vectors.
|
29-08-2017 - 01:34 | 16-07-2014 - 04:58 | |
| CVE-2006-3149 | 4.3 |
Cross-site scripting (XSS) vulnerability in topic.php in phpMyForum 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the highlight parameter.
|
20-07-2017 - 01:32 | 22-06-2006 - 22:06 | |
| CVE-2016-2340 | 5.5 |
The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows remote authenticated users to read arbitrary files, send TCP requests to intranet servers, or cause a denial of service via an XML external entity declaration in conjunction with an ent
|
07-04-2017 - 01:59 | 25-03-2016 - 21:59 | |
| CVE-2013-1608 | 6.7 |
Directory traversal vulnerability in the Management Console on the Symantec NetBackup (NBU) appliance 2.0.x allows remote attackers to read arbitrary files via unspecified vectors.
|
26-03-2013 - 14:07 | 26-03-2013 - 14:07 |