| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-6496 | 6.8 |
Remote Cross-site Request forgery (CSRF) potential has been identified in UCMBD Browser version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15, 4.15.1 which could allow for remote unsafe deserialization and cross-site request forgery (CSRF).
|
03-03-2023 - 19:10 | 16-06-2018 - 01:29 | |
| CVE-2010-4165 | 4.9 |
The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small v
|
13-02-2023 - 04:27 | 22-11-2010 - 13:00 | |
| CVE-2007-3164 | 5.8 |
Microsoft Internet Explorer 7, when prompting for HTTP Basic Authentication for an IDN web site, uses ACE labels for the domain name in the status bar, but uses internationalized labels for this name in the authentication dialog, which might allow re
|
23-07-2021 - 15:05 | 11-06-2007 - 22:30 | |
| CVE-2002-0074 | 7.5 |
Cross-site scripting vulnerability in Help File search facility for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to embed scripts into another user's session.
|
23-11-2020 - 19:49 | 22-04-2002 - 04:00 | |
| CVE-2015-1676 | 2.1 |
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to bypass the A
|
13-05-2019 - 19:55 | 13-05-2015 - 10:59 | |
| CVE-2013-6987 | 7.5 |
Multiple directory traversal vulnerabilities in the FileBrowser components in Synology DiskStation Manager (DSM) before 4.3-3810 Update 3 allow remote attackers to read, write, and delete arbitrary files via a .. (dot dot) in the (1) path parameter t
|
29-08-2017 - 01:34 | 31-12-2013 - 16:04 | |
| CVE-2010-4274 | 4.4 |
reset_diragent_keys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership.
|
17-08-2017 - 01:33 | 17-11-2010 - 01:00 | |
| CVE-2009-1292 | 2.1 |
UCM-CQ in IBM Rational ClearCase 7.0.0.x before 7.0.0.5, 7.0.1.x before 7.0.1.4, and 7.1.x before 7.1.0.1 on Linux and AIX places a username and password on the command line, which allows local users to obtain credentials by listing the process.
|
17-08-2017 - 01:30 | 14-04-2009 - 16:26 | |
| CVE-2016-7458 | 5.0 |
VMware vSphere Client 5.5 before U3e and 6.0 before U2a allows remote vCenter Server and ESXi instances to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML E
|
28-07-2017 - 01:29 | 29-12-2016 - 09:59 | |
| CVE-2005-2539 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in FlatNuke 2.5.5 and possibly earlier versions allow remote attackers to inject arbitrary web script or HTML via the (1) bodycolor, (2) backimage, (3) theme, or (4) logo parameter to structure.php,
|
11-07-2017 - 01:32 | 10-08-2005 - 04:00 |