Max CVSS | 9.3 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-1636 | 7.5 |
Multiple SQL injection vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to execute arbitrary SQL commands via the id parameter in an edit action to (1) admin_school_names.php, (2) admin_subjects.php, (3) admi
|
30-10-2018 - 16:26 | 22-01-2014 - 19:55 | |
CVE-2006-3448 | 9.3 |
Buffer overflow in the Step-by-Step Interactive Training in Microsoft Windows 2000 SP4, XP SP2 and Professional, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a long Syllabus string in crafted bookmark link files (cbo, cbl
|
18-10-2018 - 16:47 | 13-02-2007 - 20:28 | |
CVE-2005-2120 | 6.5 |
Stack-based buffer overflow in the Plug and Play (PnP) service (UMPNPMGR.DLL) in Microsoft Windows 2000 SP4, and XP SP1 and SP2, allows remote or local authenticated attackers to execute arbitrary code via a large number of "\" (backslash) characters
|
12-10-2018 - 21:37 | 13-10-2005 - 10:02 | |
CVE-2001-0784 | 5.0 |
Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters.
|
10-10-2017 - 01:29 | 18-10-2001 - 04:00 | |
CVE-2012-4281 | 7.5 |
Multiple SQL injection vulnerabilities in Travelon Express 6.2.2 allow remote attackers to execute arbitrary SQL commands via the hid parameter to (1) holiday.php or (2) holiday_book.php, (3) id parameter to pages.php, (4) fid parameter to admin/airl
|
29-08-2017 - 01:32 | 13-08-2012 - 22:55 | |
CVE-2005-4530 | 5.1 |
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Enterprise 3.0 (formerly DoPays) allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters in (1) profile.htm, (2) card.htm, (3) bank.htm,
|
20-07-2017 - 01:29 | 28-12-2005 - 01:03 |