Total
29787 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0064 | 1 Nortel | 1 Contivity | 2025-04-03 | N/A |
| cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed URL that includes shell metacharacters. | ||||
| CVE-2000-0065 | 1 Avtronics | 1 Inetserv | 2025-04-03 | N/A |
| Buffer overflow in InetServ 3.0 allows remote attackers to execute commands via a long GET request. | ||||
| CVE-2000-0068 | 1 Intel | 1 Inbusiness Email Station | 2025-04-03 | N/A |
| daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail. | ||||
| CVE-2000-0072 | 1 Computer Power Solutions | 1 Visual Casel | 2025-04-03 | N/A |
| Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges. | ||||
| CVE-2000-0076 | 2 Berkeley, Debian | 2 Nvi, Debian Linux | 2025-04-03 | N/A |
| nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover. | ||||
| CVE-2004-0272 | 1 Maxwebportal | 1 Maxwebportal | 2025-04-03 | N/A |
| SQL injection vulnerability in MaxWebPortal allows remote attackers to inject arbitrary SQL code and gain sensitive information via the SendTo parameter in Personal Messages. | ||||
| CVE-2000-0078 | 1 Hp | 1 Hp-ux | 2025-04-03 | N/A |
| The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command. | ||||
| CVE-2000-0087 | 1 Netscape | 2 Communicator, Navigator | 2025-04-03 | N/A |
| Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext. | ||||
| CVE-2006-0764 | 1 Cisco | 3 Anomaly Guard Module, Guard, Traffic Anomaly Detector Module | 2025-04-03 | N/A |
| The Authentication, Authorization, and Accounting (AAA) capability in versions 5.0(1) and 5.0(3) of the software used by multiple Cisco Anomaly Detection and Mitigation products, when running with an incomplete TACACS+ configuration without a "tacacs-server host" command, allows remote attackers to bypass authentication and gain privileges, aka Bug ID CSCsd21455. | ||||
| CVE-2000-0099 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument. | ||||
| CVE-2000-0101 | 1 Make-a-store | 1 Orderpage | 2025-04-03 | N/A |
| The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0102 | 1 Salescart | 1 Salescart | 2025-04-03 | N/A |
| The SalesCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0103 | 1 Netsmart | 1 Smartcart | 2025-04-03 | N/A |
| The SmartCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0109 | 1 Comstock | 1 Multicsp | 2025-04-03 | N/A |
| The mcsp Client Site Processor system (MultiCSP) in Standard and Poor's ComStock is installed with several accounts that have no passwords or easily guessable default passwords. | ||||
| CVE-2000-0110 | 1 Baron Consulting Group | 1 Websitetool | 2025-04-03 | N/A |
| The WebSiteTool shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0118 | 2 Redhat, Sun | 3 Linux, Solaris, Sunos | 2025-04-03 | N/A |
| The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing. | ||||
| CVE-2000-0119 | 2 Mcafee, Symantec | 2 Virusscan, Norton Antivirus | 2025-04-03 | N/A |
| The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection. | ||||
| CVE-2000-0120 | 1 Allaire | 1 Spectra | 2025-04-03 | N/A |
| The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter. | ||||
| CVE-2004-1692 | 1 Mambo | 1 Mambo Open Source | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in index.php in Mambo 4.5 (1.0.9) allows remote attackers to inject arbitrary web script or HTML via the (1) Itemid, (2) mosmsg, or (3) limit parameters. | ||||
| CVE-2004-1696 | 1 Emulive | 1 Server4 | 2025-04-03 | N/A |
| EmuLive Server4 Commerce Edition Build 7560 allows remote attackers to cause a denial of service (application crash) via a sequence of carriage returns sent to TCP port 66. | ||||