Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-4492 | 4.3 |
Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem before 0.6.6 for Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted I18n::MissingTranslationData.new call.
|
13-02-2023 - 04:47 | 07-12-2013 - 00:55 | |
CVE-2019-0552 | 4.6 |
An elevation of privilege exists in Windows COM Desktop Broker, aka "Windows COM Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 10
|
24-08-2020 - 17:37 | 08-01-2019 - 21:29 | |
CVE-2013-6415 | 4.3 |
Cross-site scripting (XSS) vulnerability in the number_to_currency helper in actionpack/lib/action_view/helpers/number_helper.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via th
|
08-08-2019 - 15:42 | 07-12-2013 - 00:55 | |
CVE-2013-4491 | 4.3 |
Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/translation_helper.rb in the internationalization component in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary web script
|
08-08-2019 - 15:42 | 07-12-2013 - 00:55 | |
CVE-2013-6416 | 4.3 |
Cross-site scripting (XSS) vulnerability in the simple_format helper in actionpack/lib/action_view/helpers/text_helper.rb in Ruby on Rails 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML attribute.
|
08-08-2019 - 15:26 | 07-12-2013 - 00:55 | |
CVE-2006-0468 | 7.5 |
CommuniGate Pro Core Server before 5.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via LDAP messages with negative BER lengths, and possibly other vectors, as demonstrated by the ProtoVer LDAP te
|
19-10-2018 - 15:44 | 30-01-2006 - 18:03 | |
CVE-2007-3694 | 4.3 |
Cross-site scripting (XSS) vulnerability in login.php in Miro Project Broadcast Machine 0.9.9.9 allows remote attackers to inject arbitrary web script or HTML via the username parameter.
|
15-10-2018 - 21:29 | 14-11-2007 - 23:46 | |
CVE-2010-4474 | 2.1 |
Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect confidentiality via unknown vectors related to Security, a similar vulnerability to CVE-2009-4269.
|
22-12-2017 - 02:29 | 17-02-2011 - 19:00 | |
CVE-2002-1359 | 10.0 |
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH
|
11-10-2017 - 01:29 | 23-12-2002 - 05:00 | |
CVE-2009-4660 | 10.0 |
Stack-based buffer overflow in the AntServer Module (AntServer.exe) in BigAnt IM Server 2.50 allows remote attackers to execute arbitrary code via a long GET request to TCP port 6660.
|
19-09-2017 - 01:30 | 03-03-2010 - 20:30 | |
CVE-2014-2599 | 4.9 |
The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service (CPU consumption) by leveraging access to certain service domains for HVM guests
|
07-01-2017 - 02:59 | 28-03-2014 - 15:55 | |
CVE-2015-4310 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse 10.5(1) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in a (1) GET or (2) POST request, aka Bug IDs CSCuq82322, CSCut95853, and CSCuq73975
|
04-01-2017 - 17:58 | 19-08-2015 - 23:59 |