Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2019-15084
Disclosure Date: August 16, 2019 (last updated November 27, 2024)
Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM.
0
Attacker Value
Unknown
CVE-2019-13208
Disclosure Date: July 03, 2019 (last updated November 27, 2024)
WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0.
0
Attacker Value
Unknown
CVE-2013-3933
Disclosure Date: February 11, 2014 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the JoomShopping (com_joomshopping) component before 4.3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the user_name parameter to index.php.
0
Attacker Value
Unknown
CVE-2006-2258
Disclosure Date: May 09, 2006 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Logon.asp in MaxxSchedule 1.0 allows remote attackers to inject arbitrary web script or HTML via the Error parameter.
0
Attacker Value
Unknown
CVE-2006-2259
Disclosure Date: May 09, 2006 (last updated October 04, 2023)
SQL injection vulnerability in Logon.asp in MaxxSchedule 1.0 allows remote attackers to execute arbitrary SQL commands via the txtLogon parameter.
0
