CVE List

Id CVE No. Status Description Phase Votes Comments Actions
93430  CVE-2016-6610  Candidate  A full path disclosure vulnerability was discovered in phpMyAdmin where a user can trigger a particular error in the export mechanism to discover the full path of phpMyAdmin on the disk. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.  Assigned (20160806)  None (candidate not yet proposed)    View
28150  CVE-2007-4793  Candidate  Buffer overflow in xlplm in plm.server.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors.  Assigned (20070910)  None (candidate not yet proposed)    View
93686  CVE-2016-6866  Candidate  slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.  Assigned (20160818)  None (candidate not yet proposed)    View
28406  CVE-2007-5049  Candidate  ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-3387. Reason: This candidate is a duplicate of CVE-2007-3387. Notes: All CVE users should reference CVE-2007-3387 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.  Assigned (20070923)  None (candidate not yet proposed)    View
93942  CVE-2016-7122  Candidate  The avi_read_nikon function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to infinite loop when it decodes an AVI file that has a crafted "nctg" structure.  Assigned (20160902)  None (candidate not yet proposed)    View

Page 20184 of 20943, showing 5 records out of 104715 total, starting on record 100916, ending on 100920

Actions