NVD List
Id | Name | Description | Reject | CVSS Version | CVSS Score | Severity | Pub Date | Modified Date | Actions |
---|---|---|---|---|---|---|---|---|---|
11016 | CVE-2011-4642 | mappy.py in Splunk Web in Splunk 4.2.x before 4.2.5 does not properly restrict use of the mappy command to access Python classes, which allows remote authenticated administrators to execute arbitrary code by leveraging the sys module in a request to the search application, as demonstrated by a cross-site request forgery (CSRF) attack, aka SPL-45172. | 2 | 4.6 | Medium | 2017-01-07 | 2012-11-06 | View | |
76552 | CVE-2000-0309 | The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service. | 2 | 2.1 | Low | 2017-01-05 | 2008-09-10 | View | |
11272 | CVE-2011-5005 | Unrestricted file upload vulnerability in QuiXplorer 2.3 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension using the upload action to index.php, then accessing it via a direct request to the file in an unspecified directory. | 2 | 7.5 | High | 2017-01-07 | 2011-12-27 | View | |
76808 | CVE-2000-0567 | Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. | 2 | 5 | Medium | 2017-01-05 | 2008-09-10 | View | |
11528 | CVE-2011-5274 | The drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain Technologie Control (DTC) before 0.32.11 allows remote attackers to execute arbitrary commands via shell metacharacters in the dtcpkg_directory parameter in a do_install action to dtc/. | 2 | 7.5 | High | 2017-01-07 | 2014-03-24 | View |
Page 912 of 17672, showing 5 records out of 88360 total, starting on record 4556, ending on 4560