| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-1725 | 9.3 |
WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms; KHTML in kdelibs in KDE; QtWebKit (aka Qt toolkit); and possibly other products do not properly handle numeric character
|
09-08-2022 - 13:48 | 09-07-2009 - 17:30 | |
| CVE-2009-2446 | 8.5 |
Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other
|
17-12-2019 - 20:26 | 13-07-2009 - 17:30 | |
| CVE-2018-0170 | 7.8 |
A vulnerability in the Cisco Umbrella Integration feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition, related to the OpenDNS software. The vulnerability is due to a logic erro
|
03-12-2019 - 18:55 | 28-03-2018 - 22:29 | |
| CVE-2009-1538 | 9.3 |
The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 performs updates to pointers without properly validating unspecified data val
|
26-02-2019 - 14:04 | 15-07-2009 - 15:30 | |
| CVE-2009-0410 | 10.0 |
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading
|
11-10-2018 - 21:01 | 03-02-2009 - 19:30 | |
| CVE-2016-8579 | 2.1 |
docker2aci <= 0.12.3 has an infinite loop when handling local images with cyclic dependency chain.
|
02-12-2016 - 22:08 | 28-10-2016 - 15:59 | |
| CVE-2007-2680 | 4.3 |
Cross-site scripting (XSS) vulnerability in the management interface in Canon Network Camera Server VB100 and VB101 with firmware 3.0 R69 and earlier, and VB150 with firmware 1.1 R39 and earlier, allows remote attackers to inject arbitrary web script
|
08-03-2011 - 02:54 | 15-05-2007 - 00:19 | |
| CVE-2009-2436 | 7.5 |
SQL injection vulnerability in page.php in Online Dating Software MyPHPDating 1.0 allows remote attackers to execute arbitrary SQL commands via the page_id parameter.
|
13-07-2009 - 14:30 | 13-07-2009 - 14:30 | |
| CVE-2009-2438 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in the search module in ClanSphere 2009.0 and 2009.0.2 allows remote attackers to inject arbitrary web script or HTML via the text parameter in a list action. NOTE: this might overlap CVE-2008-13
|
13-07-2009 - 14:30 | 13-07-2009 - 14:30 | |
| CVE-2001-1507 | 7.5 |
OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged.
|
10-09-2008 - 19:10 | 31-12-2001 - 05:00 | |
| CVE-2005-1594 | 7.5 |
SQL injection vulnerability in catalog.php for CodeThat ShoppingCart 1.3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
05-09-2008 - 20:49 | 16-05-2005 - 04:00 | |
| CVE-2005-1593 | 6.8 |
Cross-site scripting (XSS) vulnerability in catalog.php for CodeThat ShoppingCart 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
05-09-2008 - 20:49 | 16-05-2005 - 04:00 | |
| CVE-2005-1595 | 5.0 |
CodeThat ShoppingCart 1.3.1 stores config.ini under the web root, which allows remote attackers to obtain sensitive information via a direct request.
|
05-09-2008 - 20:49 | 16-05-2005 - 04:00 |