Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-1870 | 5.0 |
The OGNL extensive expression evaluation capability in XWork in Struts 2.0.0 through 2.1.8.1, as used in Atlassian Fisheye, Crucible, and possibly other products, uses a permissive whitelist, which allows remote attackers to modify server-side contex
|
20-10-2020 - 22:15 | 17-08-2010 - 20:00 | |
CVE-2018-8979 | 6.8 |
Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.
|
24-08-2020 - 17:37 | 25-03-2018 - 19:29 | |
CVE-2004-2685 | 7.5 |
Buffer overflow in YoungZSoft CCProxy 6.2 and earlier allows remote attackers to execute arbitrary code via a long address in a ping (p) command to the Telnet proxy service, a different vector than CVE-2004-2416.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 |