CVE List

Id CVE No. Status Description Phase Votes Comments Actions
11001  CVE-2004-2575  Candidate  phpGroupWare 0.9.14.005 and earlier allow remote attackers to obtain sensitive information via a direct request to (1) hook_admin.inc.php, (2) hook_home.inc.php, (3) class.holidaycalc.inc.php, and (4) setup.inc.php.sample, which reveals the path in an error message.  Assigned (20051128)  None (candidate not yet proposed)    View
76537  CVE-2014-9236  Candidate  Cross-site scripting (XSS) vulnerability in php/edit_photos.php in Zoph (aka Zoph Organizes Photos) 0.9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) photographer_id or (2) _crumb parameter.  Assigned (20141203)  None (candidate not yet proposed)    View
11257  CVE-2005-0051  Candidate  The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."  Assigned (20050111)  None (candidate not yet proposed)    View
76793  CVE-2014-9492  Candidate  ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9323. Reason: This candidate is a reservation duplicate of CVE-2014-9323. Notes: All CVE users should reference CVE-2014-9323 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.  Assigned (20150103)  None (candidate not yet proposed)    View
11513  CVE-2005-0307  Candidate  Multiple cross-site scripting (XSS) vulnerabilities in index.php in MercuryBoard 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) s, (2) l, (3) a, (4) t, (5) to, or (6) re parameters.  Assigned (20050210)  None (candidate not yet proposed)    View

Page 20401 of 20943, showing 5 records out of 104715 total, starting on record 102001, ending on 102005

Actions