| Max CVSS | 7.2 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-10165 | 5.8 |
The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.
|
10-01-2024 - 18:26 | 03-02-2017 - 19:59 | |
| CVE-2011-2504 | 6.9 |
Untrusted search path vulnerability in x11perfcomp in XFree86 x11perf before 1.5.4 allows local users to gain privileges via unspecified Trojan horse code in the current working directory.
|
13-02-2023 - 00:18 | 08-03-2013 - 22:55 | |
| CVE-2018-8584 | 7.2 |
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019,
|
03-10-2019 - 00:03 | 14-11-2018 - 01:29 | |
| CVE-2007-5127 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in SimpGB 1.46.02 allow remote attackers to inject arbitrary web script or HTML via (1) the l_username parameter to the default URI under admin/ or (2) the l_emoticonlist parameter to admin/emoticon
|
15-10-2018 - 21:40 | 27-09-2007 - 19:17 | |
| CVE-2002-0838 | 4.6 |
Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScri
|
18-10-2016 - 02:22 | 10-10-2002 - 04:00 | |
| CVE-2012-5051 | 5.0 |
Directory traversal vulnerability in VMware CapacityIQ 1.5.x allows remote attackers to read arbitrary files via unspecified vectors.
|
02-02-2013 - 05:09 | 05-10-2012 - 17:55 | |
| CVE-2005-4190 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demonstrated by (1) the identity field, (2) Category and
|
13-09-2011 - 04:00 | 13-12-2005 - 11:03 | |
| CVE-2005-4189 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith H3 before 2.0.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the Calendar name field when creating calendars, (2) event title field when deletin
|
08-03-2011 - 02:27 | 13-12-2005 - 11:03 | |
| CVE-2009-2882 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in PG MatchMaking allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) browse_ladies.php and (2) browse_men.php, the (3) gender parameter to search.php, and th
|
21-08-2009 - 04:00 | 20-08-2009 - 17:30 |