| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0843 | 4.6 |
The ReadDirectoryChangesW API function on Microsoft Windows 2000, XP, Server 2003, and Vista does not check permissions for child objects, which allows local users to bypass permissions by opening a directory with LIST (READ) access and using ReadDir
|
09-08-2021 - 16:15 | 23-02-2007 - 02:28 | |
| CVE-2007-2241 | 7.1 |
Unspecified vulnerability in query.c in ISC BIND 9.4.0, and 9.5.0a1 through 9.5.0a3, when recursion is enabled, allows remote attackers to cause a denial of service (daemon exit) via a sequence of queries processed by the query_addsoa function. Succe
|
30-10-2018 - 16:27 | 02-05-2007 - 10:19 | |
| CVE-2007-1217 | 6.9 |
Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.
|
30-10-2018 - 16:25 | 02-03-2007 - 21:18 | |
| CVE-2004-0067 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in phpGedView before 2.65 allow remote attackers to inject arbitrary HTML or web script via (1) descendancy.php, (2) index.php, (3) individual.php, (4) login.php, (5) relationship.php, (6) source.ph
|
19-10-2018 - 15:30 | 17-02-2004 - 05:00 | |
| CVE-2007-1920 | 7.5 |
SQL injection vulnerability in index.php in the aktualnosci module in SmodBIP 1.06 and earlier allows remote attackers to execute arbitrary SQL commands via the zoom parameter, possibly related to home.php.
|
11-10-2017 - 01:32 | 10-04-2007 - 23:19 | |
| CVE-2007-1909 | 7.5 |
SQL injection vulnerability in login.php in Ryan Haudenschilt Battle.net Clan Script for PHP 1.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) pass parameter.
|
11-10-2017 - 01:32 | 10-04-2007 - 23:19 |