| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-0915 | 5.5 |
The Self-Service Portal in EMC RSA Authentication Manager (AM) Prime Self-Service 3.0 and 3.1 before 3.1 1915.42871 allows remote authenticated users to cause a denial of service (PIN change for an arbitrary user) via a modified token serial number w
|
27-08-2020 - 18:42 | 22-08-2016 - 10:59 | |
| CVE-2016-6634 | 4.3 |
Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
04-11-2017 - 01:29 | 07-08-2016 - 16:59 | |
| CVE-2008-2274 | 4.3 |
Cross-site scripting (XSS) vulnerability in the sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, and 2.5.0 to 2.5.9 extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
08-08-2017 - 01:30 | 16-05-2008 - 12:54 | |
| CVE-2008-2275 | 7.5 |
Unspecified vulnerability in sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, and 2.5.0 to 2.5.9 extension for TYPO3 allows remote attackers to execute arbitrary code and delete arbitrary files via unspecified attack vectors.
|
08-08-2017 - 01:30 | 16-05-2008 - 12:54 | |
| CVE-2002-1603 | 5.0 |
GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, \, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character, which returns the ASP source code unparsed.
|
11-07-2017 - 01:29 | 13-02-2002 - 05:00 | |
| CVE-2017-9356 | 4.3 |
Sitecore.NET 7.1 through 7.2 has a Cross Site Scripting Vulnerability via the searchStr parameter to the /Search-Results URI.
|
03-07-2017 - 14:22 | 23-06-2017 - 05:29 | |
| CVE-2016-2991 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Protector for Mail Security 2.8.0.0 through 2.8.1.0 before 2.8.1.0-22115 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
01-12-2016 - 15:21 | 01-12-2016 - 11:59 | |
| CVE-2016-6355 | 7.8 |
Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, and 5.3.x through 5.3.2 on ASR 9001 devices allows remote attackers to cause a denial of service (control-plane protocol outage) via crafted fragmented packets, aka Bug ID CSCux267
|
28-11-2016 - 20:31 | 23-08-2016 - 02:11 | |
| CVE-2016-1477 | 4.0 |
Cisco Connected Streaming Analytics 1.1.1 allows remote authenticated users to discover a notification service password by reading administrative pages, aka Bug ID CSCuz92891.
|
28-11-2016 - 19:59 | 23-08-2016 - 02:10 | |
| CVE-2014-5210 | 10.0 |
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
|
21-08-2014 - 16:57 | 21-08-2014 - 14:55 | |
| CVE-2010-1314 | 5.0 |
Directory traversal vulnerability in the Highslide JS (com_hsconfig) component 1.5 and 2.0.9 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obt
|
09-04-2010 - 04:00 | 08-04-2010 - 20:30 |