Max CVSS | 7.8 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-1000386 | 3.5 |
Jenkins Active Choices plugin version 1.5.3 and earlier allowed users with Job/Configure permission to provide arbitrary HTML to be shown on the 'Build With Parameters' page through the 'Active Choices Reactive Reference Parameter' type. This could i
|
11-06-2019 - 20:18 | 26-01-2018 - 02:29 | |
CVE-2005-3781 | 5.0 |
Unspecified vulnerability in in.named in Solaris 9 allows attackers to cause a denial of service via unknown manipulations that cause in.named to "make unnecessary queries."
|
30-10-2018 - 16:25 | 23-11-2005 - 02:03 | |
CVE-2008-6164 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in DreamCost HostAdmin 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
11-10-2018 - 20:57 | 20-02-2009 - 06:46 | |
CVE-2005-2629 | 5.1 |
Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, whic
|
03-05-2018 - 01:29 | 18-11-2005 - 23:03 | |
CVE-2005-4662 | 5.0 |
Multiple SQL injection vulnerabilities in OcoMon 1.20, and possibly earlier versions, allow remote attackers to execute arbitrary SQL commands via unknown attack vectors in an unspecified input form, a different vulnerability than CVE-2005-4664.
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
CVE-2005-4157 | 7.5 |
Unspecified vulnerability in Kerio WinRoute Firewall before 6.1.3 allows remote attackers to authenticate to the service using an account that has been disabled.
|
20-07-2017 - 01:29 | 11-12-2005 - 02:03 | |
CVE-2005-4425 | 7.8 |
Unspecified vulnerability in Kerio WinRoute Firewall before 6.1.3 allows remote attackers to cause a denial of service (crash) via certain RTSP streams.
|
20-07-2017 - 01:29 | 20-12-2005 - 11:03 | |
CVE-2005-3762 | 7.5 |
SQL injection vulnerability in the navigation module (navigationmodule) in Exponent CMS 0.96.3 and later versions allows remote attackers to execute arbitrary SQL commands via the parent parameter.
|
11-07-2017 - 01:33 | 22-11-2005 - 23:03 | |
CVE-2005-3646 | 7.5 |
Multiple SQL injection vulnerabilities in lib-sessions.inc.php in phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allow remote attackers to execute arbitrary SQL commands via the sessionID parameter in (1) logout.php and (2) index.php.
|
11-07-2017 - 01:33 | 17-11-2005 - 11:02 | |
CVE-2005-3648 | 7.5 |
Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.
|
11-07-2017 - 01:33 | 17-11-2005 - 11:02 | |
CVE-2005-2630 | 5.1 |
Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10, and 10.5 and RealOne Player 1 and 2 allows remote attackers to execute arbitrary code via a crafted RealPlayer Skin (RJS) file, a different vulnerability than CVE-2004-1094.
|
11-07-2017 - 01:32 | 18-11-2005 - 23:03 | |
CVE-2004-2241 | 4.3 |
Cross-site scripting (XSS) vulnerability in Phorum 5.0.11 and earlier allows remote attackers to inject arbitrary HTML or web script via search.php. NOTE: some sources have reported that the affected file is read.php, but this is inconsistent with th
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
CVE-2004-2240 | 7.5 |
Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier allow remote attackers to modify SQL statements via (1) the query string in read.php or (2) unknown vectors in file.php.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
CVE-2013-4789 | 7.5 |
SQL injection vulnerability in modules/rss/rss.php in Cotonti before 0.9.14 allows remote attackers to execute arbitrary SQL commands via the "c" parameter to index.php.
|
13-08-2013 - 18:45 | 09-08-2013 - 21:55 | |
CVE-2010-2699 | 7.5 |
SQL injection vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to execute arbitrary SQL commands via the search parameter.
|
13-07-2010 - 04:00 | 12-07-2010 - 17:30 | |
CVE-2010-2700 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to inject arbitrary web script or HTML via the search parameter.
|
13-07-2010 - 04:00 | 12-07-2010 - 17:30 | |
CVE-2000-0741 | 7.5 |
Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension.
|
05-09-2008 - 20:21 | 20-10-2000 - 04:00 |