| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-0733 | 3.5 |
Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with many LEFT JOIN clauses, related
|
13-02-2023 - 04:16 | 19-03-2010 - 19:30 | |
| CVE-2010-0806 | 9.3 |
Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an
|
23-07-2021 - 15:04 | 10-03-2010 - 22:30 | |
| CVE-2018-2845 | 4.6 |
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logo
|
03-10-2019 - 00:03 | 19-04-2018 - 02:29 | |
| CVE-2016-7855 | 9.3 |
Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.
|
16-05-2019 - 17:14 | 01-11-2016 - 22:59 | |
| CVE-2010-0959 | 4.3 |
Cross-site scripting (XSS) vulnerability in WebEditor/Authentication/LoginPage.aspx in IBM ENOVIA SmarTeam 5 allows remote attackers to inject arbitrary web script or HTML via the errMsg parameter.
|
10-10-2018 - 19:55 | 10-03-2010 - 22:30 | |
| CVE-2010-0447 | 10.0 |
The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbitrary commands via vectors involving upload of a JS
|
10-10-2018 - 19:52 | 10-03-2010 - 22:30 | |
| CVE-2007-2527 | 7.5 |
Multiple PHP remote file inclusion vulnerabilities in DynamicPAD before 1.03.31 allow remote attackers to execute arbitrary PHP code via a URL in the HomeDir parameter to (1) dp_logs.php or (2) index.php.
|
19-10-2017 - 01:30 | 08-05-2007 - 23:19 | |
| CVE-2007-1152 | 5.0 |
Multiple directory traversal vulnerabilities in Pyrophobia 2.1.3.1 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) act or (2) pid parameter to the top-level URI (index.php), or the (3) action parameter to admin/index.php.
|
11-10-2017 - 01:31 | 02-03-2007 - 21:18 | |
| CVE-2002-0111 | 7.5 |
Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. (dot dot) in the URL.
|
18-10-2016 - 02:16 | 25-03-2002 - 05:00 | |
| CVE-2005-1888 | 4.3 |
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates.
|
05-09-2008 - 20:50 | 06-06-2005 - 04:00 |