| Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-15086 | 5.8 |
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6.
|
12-02-2023 - 23:28 | 08-11-2017 - 19:29 | |
| CVE-2005-3813 | 4.0 |
IMAP service (meimaps.exe) of MailEnable Professional 1.7 and Enterprise 1.1 allows remote authenticated attackers to cause a denial of service (application crash) by using RENAME with a non-existent mailbox, a different vulnerability than CVE-2005-3
|
19-10-2018 - 15:39 | 26-11-2005 - 02:03 | |
| CVE-2005-3955 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in MagpieRSS 7.1, as used in (a) blogBuddiesv 0.3, (b) Jaws 0.6.2, and possibly other products, allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to (a) magpie_
|
19-10-2018 - 15:39 | 01-12-2005 - 06:03 | |
| CVE-2005-3812 | 6.8 |
freeFTPd 1.0.10 allows remote authenticated users to cause a denial of service (null dereference and crash) via a PORT command with missing arguments.
|
19-10-2018 - 15:39 | 26-11-2005 - 02:03 | |
| CVE-2004-1094 | 10.0 |
Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using (1) a .rjs (skin) file in RealPlayer 10
|
19-10-2018 - 15:30 | 10-01-2005 - 05:00 | |
| CVE-2008-4409 | 5.0 |
libxml2 2.7.0 and 2.7.1 does not properly handle "predefined entities definitions" in entities, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash), as demonstrated by use of xmllint on a c
|
08-08-2017 - 01:32 | 03-10-2008 - 17:41 | |
| CVE-2005-3954 | 4.3 |
Cross-site scripting (XSS) vulnerability in blogBuddies 0.3 allows remote attackers to inject arbitrary web script or HTML via the u parameter to index.php.
|
20-07-2017 - 01:29 | 01-12-2005 - 06:03 | |
| CVE-2016-5232 | 7.1 |
Buffer overflow in Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to cause a denial of service (system crash) via a crafted app.
|
28-11-2016 - 20:23 | 30-06-2016 - 16:59 | |
| CVE-2005-3826 | 7.5 |
Multiple SQL injection vulnerabilities in Ezyhelpdesk 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) edit_id, (2) faq_id, and (3) c_id parameters in a query string, and (4) the search engine, possibly involving the search_st
|
08-03-2011 - 02:27 | 26-11-2005 - 02:03 | |
| CVE-2005-3837 | 4.3 |
Cross-site scripting (XSS) vulnerability in the search module in sCssBoard 1.2 and 1.12, and earlier versions, allows remote attackers to inject arbitrary web script or HTML via the search_term parameter.
|
08-03-2011 - 02:27 | 26-11-2005 - 20:03 | |
| CVE-2005-3816 | 7.5 |
Multiple SQL injection vulnerabilities in forum.php in freeForum 1.1 and earlier and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter or (2) thread parameter in thread mode.
|
08-03-2011 - 02:27 | 26-11-2005 - 02:03 | |
| CVE-2000-0757 | 10.0 |
The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.
|
05-09-2008 - 20:21 | 20-10-2000 - 04:00 |