| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0626 | 6.5 |
The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing com
|
19-04-2021 - 13:42 | 31-01-2007 - 18:28 | |
| CVE-2016-5421 | 6.8 |
Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly have unspecified other impact via unknown vectors.
|
08-05-2020 - 17:43 | 10-08-2016 - 14:59 | |
| CVE-2007-1581 | 9.3 |
The resource system in PHP 5.0.0 through 5.2.1 allows context-dependent attackers to execute arbitrary code by interrupting the hash_update_file function via a userspace (1) error or (2) stream handler, which can then be used to destroy and modify in
|
30-10-2018 - 16:25 | 21-03-2007 - 23:19 | |
| CVE-2006-3317 | 5.1 |
PHP remote file inclusion vulnerability in phpRaid 3.0.6 allows remote attackers to execute arbitrary code via a URL in the phpraid_dir parameter to (1) announcements.php and (2) rss.php, a different set of vectors and affected versions than CVE-2006
|
18-10-2018 - 16:46 | 29-06-2006 - 21:05 | |
| CVE-2006-6026 | 10.0 |
Heap-based buffer overflow in Real Networks Helix Server and Helix Mobile Server before 11.1.3, and Helix DNA Server 11.0 and 11.1, allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a DESCRIBE requ
|
17-10-2018 - 21:46 | 21-11-2006 - 23:07 | |
| CVE-2007-1586 | 7.8 |
ZynOS 3.40 allows remote attackers to cause a denial of service (link restart) by sending a request for the name \M via the SMB Mail Slot Protocol.
|
16-10-2018 - 16:39 | 21-03-2007 - 23:19 | |
| CVE-2007-1585 | 5.0 |
The Linksys WAG200G with firmware 1.01.01, WRT54GC 2 with firmware 1.00.7, and WRT54GC 1 with firmware 1.03.0 and earlier allow remote attackers to obtain sensitive information (passwords and configuration data) via a packet to UDP port 916. NOTE: so
|
16-10-2018 - 16:39 | 21-03-2007 - 23:19 | |
| CVE-2007-0238 | 9.3 |
Stack-based buffer overflow in filter\starcalc\scflt.cxx in the StarCalc parser in OpenOffice.org (OOo) Office Suite before 2.2, and 1.x before 1.1.5 Patch, allows user-assisted remote attackers to execute arbitrary code via a document with a long No
|
16-10-2018 - 16:31 | 21-03-2007 - 19:19 | |
| CVE-2001-0168 | 10.0 |
Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.
|
19-12-2017 - 02:29 | 03-05-2001 - 04:00 | |
| CVE-2008-5849 | 5.0 |
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation (PAT) is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMP_TIMXCEED_INTRANS (aka ICMP time exceeded in-t
|
08-08-2017 - 01:33 | 06-01-2009 - 17:30 | |
| CVE-2007-1507 | 7.5 |
The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response to an AFS cache manager FetchStatus request, and set
|
29-07-2017 - 01:30 | 20-03-2007 - 10:19 |