Max CVSS | 9.3 | Min CVSS | 2.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-6496 | 6.6 |
The (1) VetMONNT.sys and (2) VetFDDNT.sys drivers in CA Anti-Virus 2007 8.1, Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0 do not properly handle NULL buffers, which allows local users with administrative access to cause a d
|
09-04-2021 - 17:08 | 13-12-2006 - 21:28 | |
CVE-2005-4516 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in PHP-Fusion 6.00.200 through 6.00.300 allow remote attackers to inject arbitrary web script or HTML via (1) the sortby parameter in members.php and (2) IMG tags.
|
19-10-2018 - 15:41 | 28-12-2005 - 01:03 | |
CVE-2005-4371 | 5.0 |
Acidcat 2.1.13 and earlier stores the database under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a request to databases/acidcat.mdb.
|
19-10-2018 - 15:40 | 20-12-2005 - 02:03 | |
CVE-2005-4370 | 7.5 |
SQL injection vulnerability in main_content.asp in Acidcat 2.1.13 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter to default.asp.
|
19-10-2018 - 15:40 | 20-12-2005 - 02:03 | |
CVE-2016-3276 | 2.6 |
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."
|
12-10-2018 - 22:12 | 13-07-2016 - 01:59 | |
CVE-2011-3479 | 6.8 |
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a f
|
06-01-2018 - 02:29 | 25-01-2012 - 15:55 | |
CVE-2017-1169 | 3.5 |
IBM DOORS next Generation (DNG/RRC) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within
|
13-11-2017 - 17:33 | 25-10-2017 - 12:29 | |
CVE-2008-4516 | 7.5 |
SQL injection vulnerability in galerie.php in Galerie 3.2 allows remote attackers to execute arbitrary SQL commands via the pic parameter.
|
29-09-2017 - 01:32 | 09-10-2008 - 18:00 | |
CVE-2009-4897 | 9.3 |
Buffer overflow in gs/psi/iscan.c in Ghostscript 8.64 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document containing a long name.
|
17-08-2017 - 01:31 | 22-07-2010 - 05:40 | |
CVE-2005-4439 | 7.8 |
Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.
|
20-07-2017 - 01:29 | 21-12-2005 - 01:03 | |
CVE-2004-2216 | 5.0 |
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and earlier and 6.1 SP1 and earlier, and Application Server 7 Update 4 and earlier, allows remote attackers to cause a denial of service (crash) via a malformed client certificate.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
CVE-2005-4350 | 7.8 |
Unspecified vulnerability in WBEM Services A.01.x before A.01.05.12 and A.02.x before A.02.00.08 on HP-UX B.11.00 through B.11.23 allows remote attackers to cause an unspecified denial of service via unknown attack vectors.
|
08-03-2011 - 02:28 | 20-12-2005 - 00:03 | |
CVE-2005-4374 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Allinta 2.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) s parameter to faq.asp and (2) searchQuery parameter to search.asp.
|
08-03-2011 - 02:28 | 20-12-2005 - 02:03 | |
CVE-2005-4372 | 4.3 |
Cross-site scripting (XSS) vulnerability in account.html in Adaptive Website Framework (AWF) 2.10 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
08-03-2011 - 02:28 | 20-12-2005 - 02:03 | |
CVE-2005-4369 | 4.3 |
Cross-site scripting (XSS) vulnerability in Acuity CMS 2.6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly strSearchKeywords to browse.asp.
|
08-03-2011 - 02:28 | 20-12-2005 - 02:03 | |
CVE-2005-4375 | 4.3 |
Cross-site scripting (XSS) vulnerability in Amaxus 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the change parameter. NOTE: it is possible that this is resultant from CVE-2005-4376.
|
08-03-2011 - 02:28 | 20-12-2005 - 02:03 | |
CVE-2005-4381 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Caravel CMS 3.0 Beta 1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) fileDN and (2) folderviewer_attrs parameters.
|
08-03-2011 - 02:28 | 20-12-2005 - 02:03 | |
CVE-2000-0722 | 6.2 |
Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages.
|
05-09-2008 - 20:21 | 20-10-2000 - 04:00 |