| Max CVSS | 7.8 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-1195 | 4.9 |
The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Opti
|
15-02-2024 - 18:54 | 28-05-2009 - 20:30 | |
| CVE-2010-4399 | 4.3 |
Directory traversal vulnerability in languages.inc.php in DynPG CMS 4.1.1 and 4.2.0, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the CHG_DYNPG_SET_LANGUAGE parameter to index.php. NOTE: so
|
25-03-2021 - 15:05 | 06-12-2010 - 13:37 | |
| CVE-2010-4400 | 7.5 |
SQL injection vulnerability in _rights.php in DynPG CMS 4.2.0 allows remote attackers to execute arbitrary SQL commands via the giveRights_UserId parameter.
|
25-03-2021 - 15:05 | 06-12-2010 - 13:37 | |
| CVE-2018-11454 | 4.4 |
A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12 (All versions), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13 (All versions < V13 SP2 Update 2), SIMATIC STEP 7 (TIA Portal) and WinCC (T
|
09-10-2019 - 23:33 | 07-08-2018 - 15:29 | |
| CVE-2018-11453 | 4.6 |
A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12 (All versions), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13 (All versions < V13 SP2 Update 2), SIMATIC STEP 7 (TIA Portal) and WinCC (T
|
09-10-2019 - 23:33 | 07-08-2018 - 15:29 | |
| CVE-2007-4111 | 6.8 |
SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.
|
15-10-2018 - 21:33 | 31-07-2007 - 10:17 | |
| CVE-2016-6040 | 6.0 |
IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.
|
08-02-2017 - 17:03 | 01-02-2017 - 20:59 | |
| CVE-2015-2860 | 7.8 |
Directory traversal vulnerability in Avigilon Control Center (ACC) 4 before 4.12.0.54 and 5 before 5.4.2.22 allows remote attackers to read arbitrary files via a crafted help/ URL.
|
03-12-2016 - 03:07 | 23-06-2015 - 16:59 | |
| CVE-2005-3250 | 2.1 |
Unknown vulnerability in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors related to the "/proc" filesystem, which trigger a null dereference.
|
20-07-2013 - 05:20 | 17-10-2005 - 20:06 | |
| CVE-2002-1008 | 7.5 |
Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlcount.cgi that contains the script, which is not fil
|
05-09-2008 - 20:29 | 04-10-2002 - 04:00 |