| Max CVSS | 7.2 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-6437 | 5.0 |
Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attackers to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.
|
15-10-2018 - 21:54 | 19-12-2007 - 21:46 | |
| CVE-2003-0056 | 7.2 |
Buffer overflow in secure locate (slocate) before 2.7 allows local users to execute arbitrary code via a long (1) -c or (2) -r command line argument.
|
11-10-2017 - 01:29 | 19-02-2003 - 05:00 | |
| CVE-2012-1296 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in apps/admin/handlers/preview.php in Elefant CMS 1.0.x before 1.0.2-Beta and 1.1.x before 1.1.5-Beta allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) body para
|
29-08-2017 - 01:31 | 26-08-2012 - 20:55 | |
| CVE-2010-0983 | 6.8 |
PHP remote file inclusion vulnerability in include/mail.inc.php in Rezervi 3.0.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the root parameter, a different vector than CVE-2007-21
|
17-08-2017 - 01:32 | 16-03-2010 - 19:30 | |
| CVE-2005-4391 | 4.3 |
Cross-site scripting (XSS) vulnerability in damoon allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the q parameter.
|
20-07-2017 - 01:29 | 20-12-2005 - 11:03 | |
| CVE-2012-6521 | 4.3 |
Cross-site scripting (XSS) vulnerability in apps/admin/handlers/versions.php in Elefant CMS 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter to admin/versions.
|
24-01-2013 - 05:00 | 24-01-2013 - 01:55 |