| Max CVSS | 7.8 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-1297 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in main.php in Contao (formerly TYPOlight) 2.11.0 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) delete users via a delete action in t
|
11-06-2019 - 13:02 | 19-03-2012 - 18:55 | |
| CVE-2006-2802 | 5.0 |
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
|
03-10-2018 - 21:43 | 03-06-2006 - 10:02 | |
| CVE-2012-1790 | 5.0 |
Absolute path traversal vulnerability in Webgrind 1.0 and 1.0.2 allows remote attackers to read arbitrary files via a full pathname in the file parameter to index.php.
|
30-08-2018 - 17:17 | 19-03-2012 - 18:55 | |
| CVE-2012-1778 | 7.5 |
SQL injection vulnerability in artykul_print.php in CreateVision CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-08-2017 - 01:31 | 19-03-2012 - 18:55 | |
| CVE-2012-1783 | 7.8 |
Tiny Server 1.1.9 and earlier allows remote attackers to cause a denial of service (crash) via a long string in a GET request without an HTTP version number.
|
29-08-2017 - 01:31 | 19-03-2012 - 18:55 | |
| CVE-2017-7457 | 1.9 |
XML External Entity via ".AOP" files used by Moxa MX-AOPC Server 1.5 result in remote file disclosure.
|
16-08-2017 - 01:29 | 14-04-2017 - 14:59 | |
| CVE-2011-5083 | 7.5 |
Unrestricted file upload vulnerability in inc/swf/swfupload.swf in Dotclear 2.3.1 and 2.4.2 allows remote attackers to execute arbitrary code by uploading a file with an executable PHP extension, then accessing it via a direct request to the file in
|
20-03-2012 - 13:17 | 19-03-2012 - 18:55 |