| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-3193 | 8.3 |
Multiple D-Link devices including the DIR-850L firmware versions 1.14B07 and 2.07.B05 contain a stack-based buffer overflow vulnerability in the web administration interface HNAP service.
|
26-04-2023 - 18:55 | 16-12-2017 - 02:29 | |
| CVE-2014-0218 | 4.3 |
Cross-site scripting (XSS) vulnerability in the URL downloader repository in repository/url/lib.php in Moodle through 2.3.11, 2.4.x before 2.4.10, 2.5.x before 2.5.6, and 2.6.x before 2.6.3 allows remote attackers to inject arbitrary web script or HT
|
01-12-2020 - 14:52 | 27-05-2014 - 00:55 | |
| CVE-2019-9021 | 7.5 |
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory
|
18-06-2019 - 18:15 | 22-02-2019 - 23:29 | |
| CVE-2006-0917 | 2.1 |
Melange Chat Server (aka M-Chat), when accessed via a web browser, automatically sends cookies and other sensitive information for a server to any port specified in the associated link, which allows local users on that server to read the cookies from
|
18-10-2018 - 16:29 | 28-02-2006 - 11:02 | |
| CVE-2009-1979 | 10.0 |
Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtaine
|
10-10-2018 - 19:39 | 22-10-2009 - 18:30 | |
| CVE-2007-6289 | 6.8 |
Multiple PHP remote file inclusion vulnerabilities in SerWeb 2.0.0 dev1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) _SERWEB[configdir] parameter to load_lang.php, (2) _SERWEB[functionsdir] parameter to main_p
|
29-09-2017 - 01:29 | 10-12-2007 - 18:46 | |
| CVE-2007-6290 | 5.0 |
Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.
|
29-09-2017 - 01:29 | 10-12-2007 - 18:46 | |
| CVE-2003-1395 | 9.0 |
Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.
|
29-07-2017 - 01:29 | 31-12-2003 - 05:00 | |
| CVE-2014-3775 | 7.5 |
libgadu before 1.11.4 and 1.12.0 before 1.12.0-rc3, as used in Pidgin and other products, allows remote Gadu-Gadu file relay servers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted message.
|
22-12-2016 - 02:59 | 22-05-2014 - 11:14 |