| Max CVSS | 9.0 | Min CVSS | 6.4 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-11610 | 9.0 |
The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, and 3.3.x before 3.3.3 allows remote authenticated users to execute arbitrary commands via a crafted XML-RPC request, related to nested supervisord namespace looku
|
03-10-2019 - 00:03 | 23-08-2017 - 14:29 | |
| CVE-2017-14627 | 6.8 |
Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) artist (inside the TRACK tag), or (4) default (insid
|
14-12-2018 - 11:29 | 23-09-2017 - 20:29 | |
| CVE-2018-7474 | 7.5 |
An issue was discovered in Textpattern CMS 4.6.2 and earlier. It is possible to inject SQL code in the variable "qty" on the page index.php.
|
11-04-2018 - 17:37 | 14-03-2018 - 14:29 | |
| CVE-2006-4962 | 6.4 |
Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and earlier allows remote attackers to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt parameter, as demonstrated by executing PHP code in
|
19-10-2017 - 01:29 | 23-09-2006 - 10:07 | |
| CVE-2017-14704 | 6.5 |
Multiple unrestricted file upload vulnerabilities in the (1) imageSubmit and (2) proof_submit functions in Claydip Laravel Airbnb Clone 1.0 allow remote authenticated users to execute arbitrary code by uploading a file with an executable extension, t
|
10-10-2017 - 12:58 | 26-09-2017 - 14:29 | |
| CVE-2017-14703 | 7.5 |
SQL injection vulnerability in Cash Back Comparison Script 1.0 allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to search/.
|
06-10-2017 - 17:24 | 26-09-2017 - 13:29 |