| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-2061 | 7.5 |
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
|
08-02-2024 - 19:56 | 27-07-2004 - 04:00 | |
| CVE-2019-4166 | 5.8 |
IBM StoredIQ 7.6 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to
|
03-02-2023 - 20:42 | 30-04-2019 - 15:29 | |
| CVE-2019-0214 | 5.5 |
In Apache Archiva 2.0.0 - 2.2.3, it is possible to write files to the archiva server at arbitrary locations by using the artifact upload mechanism. Existing files can be overwritten, if the archiva run user has appropriate permission on the filesyste
|
21-07-2021 - 11:39 | 30-04-2019 - 22:29 | |
| CVE-2019-0213 | 5.5 |
In Apache Archiva before 2.2.4, it may be possible to store malicious XSS code into central configuration entries, i.e. the logo URL. The vulnerability is considered as minor risk, as only users with admin role can change the configuration, or the co
|
24-08-2020 - 17:37 | 30-04-2019 - 22:29 | |
| CVE-2018-20510 | 2.1 |
The print_binder_transaction_ilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "*from *code *flags" lines in a debugfs file.
|
03-05-2019 - 13:49 | 30-04-2019 - 18:29 |