NVD List
Id | Name | Description | Reject | CVSS Version | CVSS Score | Severity | Pub Date | Modified Date | Actions |
---|---|---|---|---|---|---|---|---|---|
6894 | CVE-2008-7163 | Directory traversal vulnerability in mods/Integrated/index.php in SineCMS 2.3.5 and earlier, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the sine[config][index_main] parameter. | 2 | 6.8 | Medium | 2017-01-03 | 2009-09-04 | View | |
73198 | CVE-2003-0051 | parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server"s installation path via a NULL file parameter. | 2 | 5 | Medium | 2017-01-03 | 2016-10-17 | View | |
73454 | CVE-2003-0320 | header.php in ttCMS 2.3 and earlier allows remote attackers to inject arbitrary PHP code by setting the ttcms_user_admin parameter to "1" and modifying the admin_root parameter to point to a URL that contains a Trojan horse header.inc.php script. | 2 | 7.5 | High | 2017-01-03 | 2016-10-17 | View | |
73710 | CVE-2003-0592 | Konqueror in KDE 3.1.3 and earlier (kdelibs) allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application. | 2 | 7.5 | High | 2017-01-03 | 2008-09-10 | View | |
74478 | CVE-2003-1408 | Lotus Domino Server 5.0 and 6.0 allows remote attackers to read the source code for files via an HTTP request with a filename with a trailing dot. | 2 | 5 | Medium | 2017-01-03 | 2008-09-05 | View |
Page 16019 of 17672, showing 5 records out of 88360 total, starting on record 80091, ending on 80095