Max CVSS | 9.3 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-0888 | 4.3 |
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoofing vulnerability in the "files" app. The top navigation bar displayed in the files list contained partially user-controllable input leading to a potential misrepresentation of inf
|
06-10-2022 - 18:21 | 05-04-2017 - 20:59 | |
CVE-2017-7571 | 6.0 |
public/rolechangeadmin in Faveo 1.9.3 allows CSRF. The impact is obtaining admin privileges.
|
01-04-2021 - 17:00 | 06-04-2017 - 17:59 | |
CVE-2017-7410 | 7.5 |
Multiple SQL injection vulnerabilities in account/signup.php and account/signup2.php in WebsiteBaker 2.10.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username, (2) display_name parameter.
|
07-07-2020 - 18:17 | 03-04-2017 - 22:59 | |
CVE-2017-6339 | 4.0 |
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 mismanages certain key and certificate data. Per IWSVA documentation, by default, IWSVA acts as a private Certificate Authority (CA) and dynamically generates digital cer
|
03-10-2019 - 00:03 | 05-04-2017 - 16:59 | |
CVE-2017-7454 | 4.3 |
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
|
03-10-2019 - 00:03 | 06-04-2017 - 00:59 | |
CVE-2017-10215 | 5.8 |
Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub component of Oracle PeopleSoft Products (subcomponent: EPPCM_DEFN_CATG). The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows unauthenticated attacker
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
CVE-2017-0199 | 9.3 |
Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted do
|
03-10-2019 - 00:03 | 12-04-2017 - 14:59 | |
CVE-2017-7453 | 4.3 |
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
|
16-09-2019 - 14:33 | 06-04-2017 - 00:59 | |
CVE-2017-7452 | 4.3 |
The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
|
16-09-2019 - 14:33 | 06-04-2017 - 00:59 | |
CVE-2017-7598 | 4.3 |
tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.
|
22-03-2018 - 01:29 | 09-04-2017 - 14:59 | |
CVE-2008-2822 | 9.3 |
Multiple directory traversal vulnerabilities in the FTP client in 3D-FTP Client 8.01 (8.0 build 1) allow remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a response to a (1) LIST or (2) MLSD command.
|
08-08-2017 - 01:31 | 23-06-2008 - 17:41 | |
CVE-2004-2378 | 5.0 |
@Mail 3.64 for Windows allows remote attackers to cause a denial of service ("unusable" server) via a large number of POP3 connections to the server.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
CVE-2017-7448 | 4.3 |
The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed JPEG image.
|
12-04-2017 - 01:59 | 05-04-2017 - 23:59 |