Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-0611 | 9.3 |
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on W
|
13-08-2024 - 18:58 | 13-04-2011 - 14:55 | |
CVE-2006-3907 | 5.0 |
Siemens SpeedStream 2624 allows remote attackers to cause a denial of service (device hang) by sending a crafted packet to the web administrative interface.
|
14-02-2024 - 01:17 | 27-07-2006 - 22:04 | |
CVE-2007-3970 | 7.6 |
Race condition in ESET NOD32 Antivirus before 2.2289 allows remote attackers to execute arbitrary code via a crafted CAB file, which triggers heap corruption.
|
02-02-2024 - 16:56 | 25-07-2007 - 17:30 | |
CVE-2007-1125 | 4.3 |
Cross-site scripting (XSS) vulnerability in gallery.php in XeroXer Simple one-file gallery allows remote attackers to inject arbitrary web script or HTML via the f parameter.
|
16-10-2018 - 16:36 | 27-02-2007 - 02:28 | |
CVE-2007-1124 | 5.0 |
Directory traversal vulnerability in gallery.php in XeroXer Simple one-file gallery allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
|
16-10-2018 - 16:36 | 27-02-2007 - 02:28 | |
CVE-2007-3987 | 7.5 |
SQL injection vulnerability in SearchResults.asp in ImageRacer 1.0, when WordSearchCrit is enabled, allows remote attackers to execute arbitrary SQL commands via the SearchWord parameter.
|
15-10-2018 - 21:32 | 25-07-2007 - 18:30 | |
CVE-2007-3966 | 5.0 |
SQL injection vulnerability in Munch Pro allows remote attackers to execute arbitrary SQL commands via the login field to /admin, a different vulnerability than CVE-2006-5880.
|
15-10-2018 - 21:32 | 25-07-2007 - 17:30 | |
CVE-2007-3971 | 5.0 |
Integer overflow in ESET NOD32 Antivirus before 2.2289 allows remote attackers to cause a denial of service (CPU and disk consumption) via a crafted ASPACK packed file, which triggers an infinite loop.
|
15-10-2018 - 21:32 | 25-07-2007 - 17:30 | |
CVE-2007-4027 | 6.6 |
Buffer overflow in cli32 in Areca CLI 1.72.250 and earlier might allow local users to gain privileges via a long argument. NOTE: this program is not setuid by default, but there are some usage scenarios in which an administrator might make it setuid
|
15-10-2018 - 21:32 | 26-07-2007 - 19:30 | |
CVE-2007-3972 | 5.0 |
ESET NOD32 Antivirus before 2.2289 allows remote attackers to cause a denial of service via a crafted (1) ASPACK or (2) FSG packed file, which triggers a divide-by-zero error.
|
15-10-2018 - 21:32 | 25-07-2007 - 17:30 | |
CVE-2007-3988 | 6.8 |
Session fixation vulnerability in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
|
15-10-2018 - 21:32 | 25-07-2007 - 18:30 | |
CVE-2007-4028 | 7.5 |
Absolute path traversal vulnerability in index.php in Webspell 4.01.02 allows remote attackers to include and execute arbitrary local files via a full pathname in the site parameter. NOTE: some of these details are obtained from third party informat
|
15-10-2018 - 21:32 | 26-07-2007 - 19:30 | |
CVE-2007-3969 | 9.3 |
Buffer overflow in Panda Antivirus before 20070720 allows remote attackers to execute arbitrary code via a crafted EXE file, resulting from an "Integer Cast Around."
|
15-10-2018 - 21:32 | 25-07-2007 - 17:30 | |
CVE-2007-3566 | 7.5 |
Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 before SP2 allows remote attackers to execute arbitrary code via a long size value in a create request to port 3050/tcp.
|
15-10-2018 - 21:29 | 26-07-2007 - 18:30 | |
CVE-2008-4173 | 7.5 |
SQL injection vulnerability in ProArcadeScript 1.3 allows remote attackers to execute arbitrary SQL commands via the random parameter to the default URI.
|
29-09-2017 - 01:32 | 22-09-2008 - 18:34 | |
CVE-2003-1484 | 4.3 |
Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (crash) by creating a DHTML link that uses the AnchorClick "A" object with a blank href attribute.
|
29-07-2017 - 01:29 | 31-12-2003 - 05:00 | |
CVE-2005-4505 | 7.2 |
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attem
|
20-07-2017 - 01:29 | 23-12-2005 - 00:03 |