| Max CVSS | 7.8 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-2555 | 7.5 |
SQL injection vulnerability in include/lib/mysql_connect.inc.php in ATutor 2.2.1 allows remote attackers to execute arbitrary SQL commands via the searchFriends function to friends.inc.php.
|
14-02-2024 - 01:17 | 13-04-2017 - 14:59 | |
| CVE-2016-1525 | 7.8 |
Directory traversal vulnerability in data/config/image.do in NETGEAR Management System NMS300 1.5.0.11 and earlier allows remote authenticated users to read arbitrary files via a .. (dot dot) in the realName parameter.
|
09-10-2018 - 19:59 | 13-02-2016 - 02:59 | |
| CVE-2007-2787 | 7.5 |
Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.
|
11-10-2017 - 01:32 | 21-05-2007 - 23:30 | |
| CVE-2014-5349 | 5.0 |
Stack-based buffer overflow in Baidu Spark Browser 26.5.9999.3511 allows remote attackers to cause a denial of service (application crash) via nested calls to the window.print JavaScript function.
|
20-08-2014 - 17:36 | 19-08-2014 - 19:55 |