NVD List
Id | Name | Description | Reject | CVSS Version | CVSS Score | Severity | Pub Date | Modified Date | Actions |
---|---|---|---|---|---|---|---|---|---|
81296 | CVE-2002-2345 | Oracle 9i Application Server 9.0.2 stores the web cache administrator interface password in plaintext, which allows remote attackers to gain access. | 2 | 7.5 | High | 2017-01-05 | 2008-09-05 | View | |
59280 | CVE-2006-0543 | Cerulean Trillian 3.1.0.120 allows remote attackers to cause a denial of service (client crash) via an AIM message containing the Mac encoded Rich Text Format (RTF) escape sequences (1) "d1, (2) "d2, (3) "d3, (4) "d4, and (5) "d5. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | 2 | 5 | Medium | 2016-12-20 | 2008-09-05 | View | |
60048 | CVE-2006-1339 | Directory traversal vulnerability in inc/functions.inc.php in CuteNews 1.4.1 and possibly other versions, when register_globals is enabled, allows remote attackers to include arbitrary files via a .. (dot dot) sequence and trailing NULL (%00) byte in the archive parameter in an HTTP POST or COOKIE request, which bypasses a sanity check that is only applied to a GET request. | 2 | 5 | Medium | 2016-12-20 | 2008-09-05 | View | |
61328 | CVE-2006-2643 | Cross-site scripting (XSS) vulnerability in index.php in Monster Top List (MTL) 1.4 allows remote attackers to inject arbitrary web script or HTML via the user_error_message parameter. | 2 | 4.3 | Medium | 2016-12-20 | 2008-09-05 | View | |
61584 | CVE-2006-2899 | Unspecified vulnerability in ESTsoft InternetDISK versions before 2006/04/20 allows remote authenticated users to execute arbitrary code, possibly by uploading a file with multiple extensions into the WebLink directory. | 2 | 6.5 | Medium | 2016-12-20 | 2008-09-05 | View |
Page 16944 of 17672, showing 5 records out of 88360 total, starting on record 84716, ending on 84720