| Max CVSS | 8.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-2535 | 7.5 |
Buffer overflow in the Discovery Service in BrightStor ARCserve Backup 9.0 through 11.1 allows remote attackers to execute arbitrary commands via a large packet to TCP port 41523, a different vulnerability than CVE-2005-0260.
|
20-05-2021 - 20:10 | 10-08-2005 - 04:00 | |
| CVE-2007-1099 | 7.5 |
dbclient in Dropbear SSH client before 0.49 does not sufficiently warn the user when it detects a hostkey mismatch, which might allow remote attackers to conduct man-in-the-middle attacks.
|
30-10-2018 - 16:28 | 26-02-2007 - 17:28 | |
| CVE-2002-1323 | 4.6 |
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.
|
30-10-2018 - 16:25 | 11-12-2002 - 05:00 | |
| CVE-2007-2913 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in ClonusWiki .5 allows remote attackers to inject arbitrary web script or HTML via the query parameter.
|
16-10-2018 - 16:46 | 30-05-2007 - 10:30 | |
| CVE-2007-2902 | 7.5 |
SQL injection vulnerability in main/auth/my_progress.php in Dokeos 1.8.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the course parameter.
|
11-10-2017 - 01:32 | 30-05-2007 - 10:30 | |
| CVE-2007-2900 | 6.8 |
Multiple PHP remote file inclusion vulnerabilities in Scallywag 2005-04-25 allow remote attackers to execute arbitrary PHP code via a URL in the path parameter to template.php in (1) skin/dark/, (2) skin/gold/, or (3) skin/original/.
|
11-10-2017 - 01:32 | 30-05-2007 - 10:30 | |
| CVE-2009-1346 | 7.5 |
SQL injection vulnerability in publico/ficha.php in NetHoteles 3.0 allows remote attackers to execute arbitrary SQL commands via the id_establecimiento parameter.
|
29-09-2017 - 01:34 | 20-04-2009 - 14:30 | |
| CVE-2007-2892 | 4.3 |
Cross-site scripting (XSS) vulnerability in news.asp in ASP-Nuke 2.0.7 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thi
|
29-07-2017 - 01:31 | 30-05-2007 - 01:30 | |
| CVE-2007-2911 | 8.5 |
SQL injection vulnerability in admincp/attachment.php in Jelsoft vBulletin before 3.6.6 allows remote authenticated administrators to execute arbitrary SQL commands via the "Attached After" field (GPC['search']['datelineafter'] variable), a related i
|
29-07-2017 - 01:31 | 30-05-2007 - 10:30 | |
| CVE-2007-2904 | 4.3 |
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.0 through 6.3, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a related issue to CVE-2006
|
15-11-2008 - 06:50 | 30-05-2007 - 10:30 | |
| CVE-2007-2885 | 4.3 |
The NotSafe function in the MSVDTDatabaseDesigner7 ActiveX control in VDT70.DLL in Microsoft Visual Database Tools (MSVDT) Database Designer 7.0 allows remote attackers to cause a denial of service (Internet Explorer 6 crash) via a long argument.
|
15-11-2008 - 06:50 | 30-05-2007 - 01:30 |