Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2008-1382 | 7.5 |
libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 through 1.4.0beta19 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG file with zero length "unknown" chunks, which
|
11-10-2018 - 20:32 | 14-04-2008 - 16:05 | |
CVE-2006-2015 | 2.6 |
Cross-site scripting (XSS) vulnerability in SL_site 1.0 allows remote attackers to inject arbitrary web script or HTML via the recherche parameter in recherche.php. NOTE: other XSS vectors, as reported in the original disclosure, are resultant from
|
20-07-2017 - 01:31 | 25-04-2006 - 12:50 | |
CVE-2006-2014 | 5.0 |
Directory traversal vulnerability in gallerie.php in SL_site 1.0 allows remote attackers to list images in arbitrary directories via ".." sequences in the rep parameter, which is used to construct a directory name in admin/config.inc.php. NOTE: this
|
20-07-2017 - 01:31 | 25-04-2006 - 12:50 | |
CVE-2006-2013 | 7.5 |
SQL injection vulnerability in page.php in SL_site 1.0 allows remote attackers to execute arbitrary SQL commands via the id_page parameter. NOTE: this issue could be used to produce resultant XSS from an error message.
|
20-07-2017 - 01:31 | 25-04-2006 - 12:50 | |
CVE-2003-0783 | 7.2 |
Multiple buffer overflows in hztty 2.0 allow local users to gain root privileges.
|
11-07-2017 - 01:29 | 06-10-2003 - 04:00 |