Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-2930 | 9.3 |
Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Successful exploitation could lead to arbitrary code execution.
|
17-11-2022 - 17:47 | 11-01-2017 - 04:59 | |
CVE-2014-7235 | 10.0 |
htdocs_ari/includes/login.php in the ARI Framework module/Asterisk Recording Interface (ARI) in FreePBX before 2.9.0.9, 2.10.x, and 2.11 before 2.11.1.5 allows remote attackers to execute arbitrary code via the ari_auth cookie, related to the PHP uns
|
10-12-2019 - 16:01 | 07-10-2014 - 14:55 | |
CVE-2007-3426 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
|
16-10-2018 - 16:49 | 27-06-2007 - 00:30 | |
CVE-2007-3427 | 7.5 |
SQL injection vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the pageid parameter in a stats action.
|
16-10-2018 - 16:49 | 27-06-2007 - 00:30 | |
CVE-2007-3425 | 5.0 |
Directory traversal vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to include arbitrary local files via the lang parameter, a different vector and version than CVE-2007-1076.2.
|
16-10-2018 - 16:49 | 27-06-2007 - 00:30 | |
CVE-2014-5100 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in Omeka before 2.2.1 allow remote attackers to hijack the authentication of administrators for requests that (1) add a new super user account via a request to admin/users/add, (2) insert cro
|
29-08-2017 - 01:35 | 25-07-2014 - 19:55 |