Max CVSS | 9.3 | Min CVSS | 3.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2002-0720 | 7.2 |
A handler routine for the Network Connection Manager (NCM) in Windows 2000 allows local users to gain privileges via a complex attack that causes the handler to run in the LocalSystem context with user-specified code.
|
30-04-2019 - 14:27 | 05-09-2002 - 04:00 | |
CVE-2018-8490 | 7.7 |
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Windows Hyper-V Remote Code Execution Vulnerability." This affects Window
|
28-11-2018 - 21:25 | 10-10-2018 - 13:29 | |
CVE-2009-1202 | 4.3 |
WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 allows remote attackers to bypass certain protection mechanisms involving URL rewriting and HTML rewriting, and conduct cross-site scripting (XSS) at
|
10-10-2018 - 19:35 | 25-06-2009 - 17:30 | |
CVE-2007-4633 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Cisco CallManager and Unified Communications Manager (CUCM) before 3.3(5)sr2b, 4.1 before 4.1(3)sr5, 4.2 before 4.2(3)sr2, and 4.3 before 4.3(1)sr1 allow remote attackers to inject arbitrary web
|
29-07-2017 - 01:33 | 31-08-2007 - 23:17 | |
CVE-2007-4634 | 9.3 |
Multiple SQL injection vulnerabilities in Cisco CallManager and Unified Communications Manager (CUCM) before 3.3(5)sr2b, 4.1 before 4.1(3)sr5, 4.2 before 4.2(3)sr2, and 4.3 before 4.3(1)sr1 allow remote attackers to execute arbitrary SQL commands via
|
29-07-2017 - 01:33 | 31-08-2007 - 23:17 | |
CVE-2017-3250 | 7.5 |
Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Security). Supported versions that are affected are 2.1.1, 3.0.1 and 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with networ
|
31-01-2017 - 13:26 | 27-01-2017 - 22:59 | |
CVE-2015-1936 | 6.0 |
The administrative console in IBM WebSphere Application Server (WAS) 8.0.0 before 8.0.0.11 and 8.5 before 8.5.5.6, when the Security feature is disabled, allows remote authenticated users to hijack sessions via the JSESSIONID parameter.
|
30-11-2016 - 03:00 | 14-07-2015 - 17:59 | |
CVE-2012-3454 | 3.6 |
eXtplorer 2.1.0b6 uses world writable permissions for the /var/lib/extplorer/ftp_tmp directory, which allows local users to delete or overwrite arbitrary files.
|
08-08-2012 - 15:21 | 07-08-2012 - 20:55 | |
CVE-2012-3453 | 3.6 |
logol 1.5.0 uses world writable permissions for the /var/lib/logol/results directory, which allows local users to delete or overwrite arbitrary files.
|
08-08-2012 - 04:00 | 07-08-2012 - 20:55 | |
CVE-2005-3726 | 7.5 |
SQL injection vulnerability in Interspire ArticleLive NX 0.3 allows remote attackers to execute arbitrary SQL commands via the Query parameter.
|
08-03-2011 - 02:27 | 21-11-2005 - 11:03 |