CVE List

Id CVE No. Status Description Phase Votes Comments Actions
82170  CVE-2015-4893  Candidate  Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4911.  Assigned (20150624)  None (candidate not yet proposed)    View
16890  CVE-2006-0786  Candidate  Incomplete blacklist vulnerability in include.php in PHPKIT 1.6.1 Release 2 and earlier, with allow_url_fopen enabled, allows remote attackers to conduct PHP remote file include attacks via a path parameter that specifies a (1) UNC share or (2) ftps URL, which bypasses the check for "http://", "ftp://", and "https://" URLs.  Assigned (20060219)  None (candidate not yet proposed)    View
82426  CVE-2015-5149  Candidate  Directory traversal vulnerability in Zoho ManageEngine SupportCenter Plus 7.90 allows remote authenticated users to write to arbitrary files via a .. (dot dot) in the component parameter in the Request component to workorder/Attachment.jsp.  Assigned (20150630)  None (candidate not yet proposed)    View
17146  CVE-2006-1042  Candidate  Multiple SQL injection vulnerabilities in Gregarius 0.5.2 allow remote attackers to execute arbitrary SQL commands via the (1) folder parameter to feed.php or (2) rss_query parameter to search.php.  Assigned (20060307)  None (candidate not yet proposed)    View
82682  CVE-2015-5405  Candidate  HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix Operating Environment before 7.5.0 and other products, allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors.  Assigned (20150707)  None (candidate not yet proposed)    View

Page 20487 of 20943, showing 5 records out of 104715 total, starting on record 102431, ending on 102435

Actions