Export limit exceeded: 346559 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 10363 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346559 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-4307 | 1 Jonathan Bravata | 1 Scarecrow | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3) the user parameter to profile.cgi. | ||||
| CVE-1999-0157 | 1 Cisco | 2 Ios, Pix Firewall Software | 2026-04-16 | N/A |
| Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service. | ||||
| CVE-2005-4309 | 1 Scriptscenter | 1 Ezupload Pro | 2026-04-16 | N/A |
| SQL injection vulnerability in ezUpload Pro 2.2 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified search module parameters. | ||||
| CVE-1999-0159 | 1 Cisco | 1 Ios | 2026-04-16 | 3.5 Low |
| Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases. | ||||
| CVE-2005-4311 | 1 Dcscripts | 2 Dcforum, Dcforum\+ | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in DCForum 6.25 and earlier, and possibly DCForum+ 1.x, allows remote attackers to inject arbitrary web script or HTML via (1) the page parameter in dcboard.php and (2) unspecified search parameters. | ||||
| CVE-1999-0160 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections. | ||||
| CVE-2005-4313 | 1 Almondsoft | 1 Almond Personals | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in AlmondSoft Almond Personals 4.05 allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||||
| CVE-1999-0163 | 1 Eric Allman | 1 Sendmail | 2026-04-16 | N/A |
| In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | ||||
| CVE-2003-0155 | 1 Mozilla | 1 Bonsai | 2026-04-16 | N/A |
| bonsai Mozilla CVS query tool allows remote attackers to gain access to the parameters page without authentication. | ||||
| CVE-2005-4314 | 1 Ppcal Shopping Cart | 1 Ppcal Shopping Cart | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) stop and (2) user parameters. | ||||
| CVE-1999-0165 | 3 Bsdi, Linux, Sun | 5 Bsd Os, Linux Kernel, Nfs and 2 more | 2026-04-16 | N/A |
| NFS cache poisoning. | ||||
| CVE-2005-4315 | 1 Nicplex | 1 Plexcart X3 | 2026-04-16 | N/A |
| SQL injection vulnerability in the search function in Plexum PLEXCART X3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly involving the (1) s_itemname and (2) s_orderby parameters to plexcart.pl. | ||||
| CVE-1999-0166 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. | ||||
| CVE-1999-0169 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows attackers to read and write any file on the system by specifying a false UID. | ||||
| CVE-2005-4318 | 1 Limbo Cms | 1 Limbo Cms | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Limbo CMS 1.0.4.2 and earlier, with register_globals off, allows remote attackers to execute arbitrary SQL commands via the _SERVER[REMOTE_ADDR] parameter, which modifies the underlying $_SERVER variable. | ||||
| CVE-1999-0171 | 1 Linux | 1 Linux Kernel | 2026-04-16 | N/A |
| Denial of service in syslog by sending it a large number of superfluous messages. | ||||
| CVE-2005-4320 | 1 Limbo Cms | 1 Limbo Cms | 2026-04-16 | N/A |
| Limbo CMS 1.0.4.2 and earlier allows remote attackers to obtain the installation path of the application via a direct request to (1) doc.inc.php, (2) element.inc.php, and (3) node.inc.php, which leaks the path in an error message. | ||||
| CVE-1999-0181 | 1 Rpc.walld | 1 Rpc.walld | 2026-04-16 | N/A |
| The wall daemon can be used for denial of service, social engineering attacks, or to execute remote commands. | ||||
| CVE-1999-0182 | 1 Samba | 1 Samba | 2026-04-16 | N/A |
| Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password. | ||||
| CVE-1999-0186 | 1 Sun | 1 Solaris | 2026-04-16 | N/A |
| In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters. | ||||