Max CVSS | 9.3 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-3651 | 4.0 |
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows low privileg
|
29-08-2022 - 20:52 | 08-08-2017 - 15:29 | |
CVE-2017-3161 | 4.3 |
The HDFS web UI in Apache Hadoop before 2.7.0 is vulnerable to a cross-site scripting (XSS) attack through an unescaped query parameter.
|
03-07-2021 - 21:15 | 26-04-2017 - 20:59 | |
CVE-2017-7988 | 5.0 |
In Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwriting the author of an article.
|
03-10-2019 - 00:03 | 25-04-2017 - 18:59 | |
CVE-2017-1170 | 4.6 |
IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 8.0 could allow a local user to hijack a user's session. IBM X-Force ID: 123230.
|
03-10-2019 - 00:03 | 26-04-2017 - 17:59 | |
CVE-2017-7985 | 4.3 |
In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of multibyte characters leads to XSS vulnerabilities in various components.
|
19-03-2019 - 15:43 | 25-04-2017 - 18:59 | |
CVE-2008-2785 | 9.3 |
Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird before 2.0.0.16, and SeaMonkey before 1.1.11 use an incorrect integer data type as a CSS object reference counter in the CSSValue array (aka nsCSSValue:Array) data structure, which all
|
11-10-2018 - 20:42 | 19-06-2008 - 21:41 | |
CVE-2006-4146 | 5.1 |
Buffer overflow in the (1) DWARF (dwarfread.c) and (2) DWARF2 (dwarf2read.c) debugging code in GNU Debugger (GDB) 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block (DW_FORM_blo
|
11-10-2017 - 01:31 | 31-08-2006 - 22:04 | |
CVE-2004-0194 | 7.5 |
Stack-based buffer overflow in the OutputDebugString function for Adobe Acrobat Reader 5.1 allows remote attackers to execute arbitrary code via a PDF document with XML Forms Data Format (XFDF) data.
|
10-10-2017 - 01:30 | 29-03-2004 - 05:00 | |
CVE-2017-1149 | 7.5 |
IBM UrbanCode Deploy (UCD) 6.0, 6.1, and 6.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive informat
|
05-05-2017 - 12:51 | 25-04-2017 - 18:59 | |
CVE-2017-8057 | 5.0 |
In Joomla! 3.4.0 through 3.6.5 (fixed in 3.7.0), multiple files caused full path disclosures on systems with enabled error reporting.
|
03-05-2017 - 13:09 | 25-04-2017 - 18:59 | |
CVE-2017-7987 | 4.3 |
In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate escaping of file and folder names leads to XSS vulnerabilities in the template manager component.
|
03-05-2017 - 13:05 | 25-04-2017 - 18:59 | |
CVE-2016-8924 | 4.3 |
IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's s
|
03-05-2017 - 12:24 | 26-04-2017 - 17:59 | |
CVE-2017-7986 | 4.3 |
In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of specific HTML attributes leads to XSS vulnerabilities in various components.
|
02-05-2017 - 18:15 | 25-04-2017 - 18:59 | |
CVE-2017-7989 | 4.0 |
In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden.
|
02-05-2017 - 18:06 | 25-04-2017 - 18:59 |