Max CVSS | 9.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-0189 | 5.0 |
cachemgr.cgi in Squid 3.1.x and 3.2.x, possibly 3.1.22, 3.2.4, and other versions, allows remote attackers to cause a denial of service (resource consumption) via a crafted request. NOTE: this issue is due to an incorrect fix for CVE-2012-5643, possi
|
13-02-2023 - 04:38 | 08-02-2013 - 20:55 | |
CVE-2009-5038 | 7.8 |
Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during a specific time period after an initial reload, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a certain IRC server, rel
|
13-05-2020 - 14:51 | 07-01-2011 - 19:00 | |
CVE-2018-11062 | 9.0 |
Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts named 'support' and 'admin' that are protected with default passwords. These accounts have limited privileges and can access certain system files only. A ma
|
30-01-2019 - 13:35 | 02-11-2018 - 22:29 | |
CVE-2005-4135 | 7.5 |
Direct static code injection vulnerability in includes/newtopic.php in SimpleBBS 1.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the Host header (possibly the name parameter or variable), which is the
|
19-10-2018 - 15:40 | 09-12-2005 - 15:03 | |
CVE-2007-4985 | 4.3 |
ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in th
|
15-10-2018 - 21:39 | 24-09-2007 - 22:17 | |
CVE-2002-1143 | 5.0 |
Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka
|
12-10-2018 - 21:32 | 11-04-2003 - 04:00 | |
CVE-2016-10158 | 5.0 |
The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via crafted EXIF data that triggers an attempt to divid
|
04-05-2018 - 01:29 | 24-01-2017 - 21:59 | |
CVE-2003-0286 | 7.5 |
SQL injection vulnerability in register.asp in Snitz Forums 2000 before 3.4.03, and possibly 3.4.07 and earlier, allows remote attackers to execute arbitrary stored procedures via the Email variable.
|
11-07-2017 - 01:29 | 16-06-2003 - 04:00 | |
CVE-2013-0259 | 2.1 |
Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inject arbitrary web script or HTML via the subject parameter.
|
03-07-2013 - 04:29 | 27-03-2013 - 21:55 |