Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-1694 | 4.3 |
IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be read by an attacker using man in the middle techniques. IBM X-Force ID: 134165.
|
03-10-2019 - 00:03 | 20-12-2017 - 18:29 | |
CVE-2008-5009 | 4.0 |
Race condition in the s_xout kernel module in Sun Solstice X.25 9.2, when running on a multiple CPU machine, allows local users to cause a denial of service (panic) via vectors involving reading the /dev/xty file.
|
30-10-2018 - 16:25 | 10-11-2008 - 15:23 | |
CVE-2001-0181 | 10.0 |
Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands.
|
19-12-2017 - 02:29 | 26-03-2001 - 05:00 | |
CVE-2007-0501 | 6.8 |
PHP remote file inclusion vulnerability in index.php in Mafia Scum Tools 2.0.0 in Matthew Wardrop Advanced Random Generators (adv-random-gen) allows remote attackers to execute arbitrary PHP code via a URL in the gen parameter.
|
19-10-2017 - 01:30 | 25-01-2007 - 21:28 | |
CVE-2007-1524 | 5.0 |
Directory traversal vulnerability in themes/default/ in ZomPlog 3.7.6 and earlier allows remote attackers to include arbitrary local files via a .. (dot dot) in the settings[skin] parameter, as demonstrated by injecting PHP code into an Apache HTTP S
|
10-10-2017 - 01:30 | 20-03-2007 - 20:19 | |
CVE-2016-6517 | 7.5 |
Directory traversal vulnerability in Liferay 5.1.0 allows remote attackers to have unspecified impact via a %2E%2E (encoded dot dot) in the minifierBundleDir parameter to barebone.jsp.
|
26-01-2017 - 02:59 | 23-01-2017 - 21:59 | |
CVE-2006-6678 | 7.5 |
The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier does not properly verify temporary filenames when editing textarea fields, which allows attackers to execute arbitrary commands via shell metacharacters in the filename.
|
08-03-2011 - 02:46 | 21-12-2006 - 01:28 |