| Max CVSS | 9.3 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-16995 | 7.2 |
The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.
|
19-01-2023 - 15:48 | 27-12-2017 - 17:08 | |
| CVE-2018-14392 | 4.3 |
The New Threads plugin before 1.2 for MyBB has XSS.
|
13-09-2018 - 17:24 | 19-07-2018 - 02:29 | |
| CVE-2018-13832 | 3.5 |
Multiple Persistent cross-site scripting (XSS) issues in the Techotronic all-in-one-favicon (aka All In One Favicon) plugin 4.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via Apple-Text, GIF-Text, ICO-Text, PNG-Text,
|
13-09-2018 - 13:55 | 16-07-2018 - 20:29 | |
| CVE-2018-11124 | 3.5 |
Cross-site scripting (XSS) vulnerability in Attributes functionality in Open-AudIT Community edition before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via a crafted attribute name of an Attribute.
|
02-09-2018 - 13:52 | 06-07-2018 - 14:29 | |
| CVE-2007-5374 | 6.5 |
cp_memberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when processing an admin action, which allows remote authenticated users to increase the privileges of any account.
|
29-09-2017 - 01:29 | 11-10-2007 - 10:17 | |
| CVE-2010-2932 | 9.3 |
Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument to the LoadProperties method.
|
17-08-2017 - 01:32 | 05-08-2010 - 13:23 |