| Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-0072 | 4.3 |
Microsoft Internet Explorer 6.0 through 8.0 beta2 allows remote attackers to cause a denial of service (application crash) via an onload=screen[""] attribute value in a BODY element.
|
14-02-2024 - 01:17 | 08-01-2009 - 19:30 | |
| CVE-2015-8955 | 6.9 |
arch/arm64/kernel/perf_event.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via vectors involving events that are mishandled during a span of multip
|
05-10-2023 - 14:19 | 10-10-2016 - 10:59 | |
| CVE-2018-0922 | 9.3 |
Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Compatibility Pack SP2, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft Office Word Vi
|
24-08-2020 - 17:37 | 14-03-2018 - 17:29 | |
| CVE-2008-0067 | 10.0 |
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) long string parameters to the OpenView5.exe CGI program; (2) a long string parameter to t
|
15-10-2018 - 21:57 | 08-01-2009 - 19:30 | |
| CVE-2009-0338 | 4.3 |
Cross-site scripting (XSS) vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to inject arbitrary web script or HTML via the CategoryID parameter in a refer action.
|
11-10-2018 - 21:01 | 29-01-2009 - 18:30 | |
| CVE-2009-0339 | 7.5 |
SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to execute arbitrary SQL commands via the itemID parameter in a view action.
|
11-10-2018 - 21:01 | 29-01-2009 - 18:30 | |
| CVE-2008-4827 | 9.3 |
Multiple heap-based buffer overflows in the AddTab method in the (1) Tab and (2) CTab ActiveX controls in c1sizer.ocx and the (3) TabOne ActiveX control in sizerone.ocx in ComponentOne SizerOne 8.0.20081.140, as used in ComponentOne Studio for Active
|
11-10-2018 - 20:52 | 08-01-2009 - 19:30 | |
| CVE-2001-1089 | 7.5 |
libnss-pgsql in nss-pgsql 0.9.0 and earlier allows remote attackers to execute arbitrary SQL queries by inserting SQL code into an HTTP request.
|
10-10-2017 - 01:29 | 10-09-2001 - 04:00 | |
| CVE-2009-0113 | 5.0 |
Directory traversal vulnerability in attachmentlibrary.php in the XStandard component for Joomla! 1.5.8 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the X_CMS_LIBRARY_PATH HTTP header.
|
29-09-2017 - 01:33 | 09-01-2009 - 18:30 | |
| CVE-2015-2684 | 4.0 |
Shibboleth Service Provider (SP) before 2.5.4 allows remote authenticated users to cause a denial of service (crash) via a crafted SAML message.
|
03-12-2016 - 03:05 | 31-03-2015 - 14:59 | |
| CVE-2009-0245 | 4.3 |
Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4629.
|
22-01-2009 - 05:00 | 22-01-2009 - 02:30 | |
| CVE-2007-1965 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in eXV2 CMS 2.0.4.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the set_lang parameter to (1) archive.php, (2) article.php, (3) index.php, or (4) topics.php.
|
05-09-2008 - 21:21 | 11-04-2007 - 10:19 |