| Max CVSS | 6.9 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-3847 | 6.9 |
elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LD_AUDIT environment variable, which allows local users to gain privileges via a crafted d
|
13-02-2023 - 04:26 | 07-01-2011 - 19:00 | |
| CVE-2016-4315 | 3.5 |
Cross-site request forgery (CSRF) vulnerability in WSO2 Carbon 4.4.5 allows remote attackers to hijack the authentication of privileged users for requests that shutdown a server via a shutdown action to server-admin/proxy_ajaxprocessor.jsp.
|
09-10-2018 - 20:00 | 17-02-2017 - 02:59 | |
| CVE-2016-4316 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in WSO2 Carbon 4.4.5 allow remote attackers to inject arbitrary web script or HTML via the (1) setName parameter to identity-mgt/challenges-mgt.jsp; the (2) webappType or (3) httpPort parameter to w
|
09-10-2018 - 20:00 | 17-02-2017 - 02:59 | |
| CVE-2016-4314 | 4.0 |
Directory traversal vulnerability in the LogViewer Admin Service in WSO2 Carbon 4.4.5 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the logFile parameter to downloadgz-ajaxprocessor.jsp.
|
09-10-2018 - 20:00 | 17-02-2017 - 02:59 | |
| CVE-2007-3068 | 6.8 |
Stack-based buffer overflow in DVD X Player 4.1 Professional allows remote attackers to execute arbitrary code via a PLF playlist containing a long filename.
|
19-10-2017 - 01:30 | 06-06-2007 - 01:30 |