Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-3662 | 7.5 |
SQL injection vulnerability in index.php in ATutor 1.5.3 allows remote attackers to execute arbitrary SQL commands via the fid parameter. NOTE: this issue has been disputed by the vendor, who states "The mentioned SQL injection vulnerability is not p
|
07-08-2024 - 19:15 | 18-07-2006 - 15:47 | |
CVE-2018-1858 | 6.8 |
IBM API Connect 5.0.0.0 through 5.0.8.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 151256.
|
24-03-2023 - 18:08 | 25-06-2019 - 16:15 | |
CVE-2017-0219 | 4.6 |
Microsoft Windows 10 Gold, Windows 10 1511, Windows 10 1607, and Windows Server 2016 allow an attacker to exploit a security feature bypass vulnerability in Device Guard that could allow the attacker to inject malicious code into a Windows PowerShell
|
03-10-2019 - 00:03 | 15-06-2017 - 01:29 | |
CVE-2008-1974 | 4.3 |
Cross-site scripting (XSS) vulnerability in addevent.php in Horde Kronolith 2.1.7, Groupware Webmail Edition 1.0.6, and Groupware 1.0.5 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
|
11-10-2018 - 20:38 | 27-04-2008 - 19:05 | |
CVE-2010-1084 | 7.1 |
Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service (memory corruption) via a large number of Bluetooth sockets, related to the size of sysfs files in (1) net/bluetooth/l2cap.c, (2) ne
|
10-10-2018 - 19:55 | 06-04-2010 - 22:30 | |
CVE-2003-1138 | 5.0 |
The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET request containing a double s
|
05-09-2008 - 20:36 | 27-10-2003 - 05:00 |