| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-7254 | 6.5 |
Microsoft SQL Server 2012 SP2 and 2012 SP3 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability."
|
12-10-2018 - 22:14 | 10-11-2016 - 07:00 | |
| CVE-2002-0020 | 7.5 |
Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed protocol options.
|
12-10-2018 - 21:30 | 08-03-2002 - 05:00 | |
| CVE-2010-5024 | 6.0 |
SQL injection vulnerability in manage/add_user.php in CuteSITE CMS 1.2.3 and 1.5.0 allows remote authenticated users, with Read privileges, to execute arbitrary SQL commands via the user_id parameter. NOTE: some of these details are obtained from th
|
10-10-2018 - 20:08 | 02-11-2011 - 21:55 | |
| CVE-2010-5025 | 4.3 |
Cross-site scripting (XSS) vulnerability in manage/main.php in CuteSITE CMS 1.2.3 and 1.5.0 allows remote attackers to inject arbitrary web script or HTML via the fld_path parameter. NOTE: some of these details are obtained from third party informat
|
10-10-2018 - 20:08 | 02-11-2011 - 21:55 | |
| CVE-2009-0879 | 5.0 |
The CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to cause a denial of service (daemon crash) via a long consumer name, as demonstrated by an M-POST request to a long /CIMListener/ URI.
|
10-10-2018 - 19:32 | 12-03-2009 - 15:20 | |
| CVE-2018-8115 | 9.3 |
A remote code execution vulnerability exists when the Windows Host Compute Service Shim (hcsshim) library fails to properly validate input while importing a container image, aka "Windows Host Compute Service Shim Remote Code Execution Vulnerability."
|
13-06-2018 - 14:50 | 02-05-2018 - 19:29 | |
| CVE-2010-2343 | 9.3 |
Stack-based buffer overflow in D.R. Software Audio Converter 8.1, 2007, and 8.05 allows remote attackers to execute arbitrary code via a crafted pls playlist file.
|
17-08-2017 - 01:32 | 21-06-2010 - 15:30 | |
| CVE-2008-4389 | 9.3 |
Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle attackers to download arbitrary executable files onto a
|
08-08-2017 - 01:32 | 17-06-2010 - 16:30 | |
| CVE-2007-2805 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in index.php in ClientExec (CE) 3.0 beta2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the (1) ticketID, (2) view, and (3) fuse parameters.
|
29-07-2017 - 01:31 | 22-05-2007 - 19:30 | |
| CVE-2014-9714 | 4.3 |
Cross-site scripting (XSS) vulnerability in the WddxPacket::recursiveAddVar function in HHVM (aka the HipHop Virtual Machine) before 3.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted string to the wddx_serialize_value
|
24-06-2016 - 15:55 | 13-04-2015 - 14:59 |