| Max CVSS | 7.1 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-5180 | 5.0 |
res_query in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash).
|
13-02-2023 - 00:50 | 27-06-2017 - 20:29 | |
| CVE-2017-9338 | 3.5 |
Inadequate escaping lead to XSS vulnerability in the search module in ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2. To be exploitable a user has to write or paste malicious content into the search d
|
21-09-2022 - 18:23 | 17-07-2017 - 21:29 | |
| CVE-2016-7047 | 4.0 |
A flaw was found in the CloudForms API before 5.6.3.0, 5.7.3.1 and 5.8.1.2. A user with permissions to use the MiqReportResults capability within the API could potentially view data from other tenants or groups to which they should not have access.
|
09-10-2019 - 23:19 | 11-09-2018 - 13:29 | |
| CVE-2006-4747 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in IdevSpot TextAds allow remote attackers to inject arbitrary web script or HTML via (1) the id parameter in delete.php and (2) the error parameter in error.php.
|
17-10-2018 - 21:39 | 13-09-2006 - 22:07 | |
| CVE-2017-8896 | 4.3 |
ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.
|
13-06-2018 - 14:49 | 17-07-2017 - 21:29 | |
| CVE-2014-4352 | 2.1 |
Address Book in Apple iOS before 8 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID.
|
29-08-2017 - 01:34 | 18-09-2014 - 10:55 | |
| CVE-2017-11526 | 7.1 |
The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file.
|
28-07-2017 - 13:57 | 23-07-2017 - 03:29 | |
| CVE-2004-1844 | 4.3 |
Cross-site scripting (XSS) vulnerability in Member Management System 2.1 allows remote attackers to inject arbitrary web script or HTML via (1) the err parameter to error.asp or (2) register.asp.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2017-9996 | 6.8 |
The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not exclude the CHUNKY format, which allows remote attackers to cause a denial
|
05-07-2017 - 14:54 | 28-06-2017 - 06:29 | |
| CVE-2017-9995 | 6.8 |
libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate height and width data, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via
|
03-07-2017 - 18:59 | 28-06-2017 - 06:29 |