| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-0063 | 6.5 |
Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrar
|
13-02-2023 - 00:31 | 31-03-2014 - 14:58 | |
| CVE-2017-6472 | 5.0 |
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an RTMPT dissector infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rtmpt.c by properly incrementing a certain sequence va
|
03-10-2019 - 00:03 | 04-03-2017 - 03:59 | |
| CVE-2018-3125 | 6.4 |
Vulnerability in the Oracle Retail Merchandising System component of Oracle Retail Applications (subcomponent: Security (SQL Logger)). The supported version that is affected is 14.1. Easily exploitable vulnerability allows unauthenticated attacker wi
|
03-10-2019 - 00:03 | 16-01-2019 - 19:29 | |
| CVE-2015-2542 | 9.3 |
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability."
|
12-10-2018 - 22:10 | 09-09-2015 - 00:59 | |
| CVE-2014-2040 | 2.1 |
Multiple cross-site scripting (XSS) vulnerabilities in the (1) callback_multicheck, (2) callback_radio, and (3) callback_wysiwygin functions in mfrh_class.settings-api.php in the Media File Renamer plugin 1.7.0 for WordPress allow remote authenticate
|
09-10-2018 - 19:43 | 03-03-2014 - 18:55 | |
| CVE-2014-100019 | 7.5 |
SQL injection vulnerability in the LTree converter in Pomm before 1.1.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
08-09-2017 - 01:29 | 13-01-2015 - 15:59 | |
| CVE-2009-3030 | 4.3 |
Cross-site scripting (XSS) vulnerability in Symantec SecurityExpressions Audit and Compliance Server 4.1.1, 4.1, and earlier allows remote attackers to inject arbitrary web script or HTML via vectors that trigger an error message in a response, relat
|
17-08-2017 - 01:31 | 15-10-2009 - 10:30 | |
| CVE-2003-1204 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.12 BETA and earlier allow remote attackers to execute script on other clients via (1) the link parameter in sectionswindow.php, the directory parameter in (2) gallery.php, (
|
11-07-2017 - 01:29 | 31-12-2003 - 05:00 | |
| CVE-2014-1879 | 3.5 |
Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.
|
05-08-2015 - 16:28 | 20-02-2014 - 15:27 | |
| CVE-2012-5703 | 5.0 |
The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.
|
12-03-2013 - 03:18 | 20-11-2012 - 05:52 | |
| CVE-2006-0656 | 5.0 |
Directory traversal vulnerability in HP Systems Insight Manager 4.2 through 5.0 SP3 for Windows allows remote attackers to access arbitrary files via unspecified vectors, a different vulnerability than CVE-2005-2006.
|
08-03-2011 - 02:30 | 13-02-2006 - 11:06 |