Export limit exceeded: 362520 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 20043 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (362520 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2005-4596 1 Ades Design 1 Adesguestbook 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in read.php in AdesGuestbook 2.0 allows remote attackers to inject arbitrary web script or HTML via the totalRows_rsRead parameter.
CVE-1999-1017 1 Seattle Lab Software 1 Emurl 2026-04-16 N/A
Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message.
CVE-2005-4594 1 Tugzip 1 Tugzip 2026-04-16 N/A
Stack-based buffer overflow in TUGZip 3.4.0.0 allows remote attackers to execute arbitrary code via a long filename in an ARJ archive.
CVE-1999-1016 2 Microsoft, Qualcomm 4 Frontpage, Internet Explorer, Outlook Express and 1 more 2026-04-16 N/A
Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell.
CVE-1999-0810 1 Samba 1 Samba 2026-04-16 N/A
Denial of service in Samba NETBIOS name service daemon (nmbd).
CVE-1999-0813 1 Infodrom 1 Cfingerd 2026-04-16 N/A
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
CVE-2003-0175 1 Sgi 1 Irix 2026-04-16 N/A
SGI IRIX before 6.5.21 allows local users to cause a denial of service (kernel panic) via a certain call to the PIOCSWATCH ioctl.
CVE-2005-4502 1 Net-square 1 Httprint 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in httprint v202, and possibly other versions before v301, allows remote attackers to inject arbitrary web script or HTML via the Server field in an HTTP response, which is not sanitized before being displayed to the user.
CVE-1999-0814 1 Redhat 1 Linux 2026-04-16 N/A
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.
CVE-2005-4505 1 Mcafee 2 Common Management Agent, Virusscan Enterprise 2026-04-16 N/A
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.
CVE-1999-0816 1 Motorola 1 Motorola Cablerouter 2026-04-16 N/A
The Motorola CableRouter allows any remote user to connect to and configure the router on port 1024.
CVE-2005-4506 1 Nexus Concepts 1 Dev Hound 2026-04-16 N/A
Nexus Concepts Dev Hound 2.24 and earlier stores username and password information in cleartext in the devhound.tdbd file, which allows local users to gain privileges.
CVE-1999-0821 1 Freebsd 1 Freebsd 2026-04-16 N/A
FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument.
CVE-2005-4508 1 Nexus Concepts 1 Dev Hound 2026-04-16 N/A
Nexus Concepts Dev Hound 2.24 and earlier allows remote attackers to obtain the installation path via a URL containing a non-existent .dll file.
CVE-1999-0824 1 Microsoft 1 Windows Nt 2026-04-16 N/A
A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users.
CVE-2005-4512 1 Waxtrapp 1 Waxtrapp 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in WAXTRAPP 3.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters.
CVE-1999-0825 1 Sco 1 Unixware 2026-04-16 N/A
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.
CVE-2003-0181 1 Ibm 1 Lotus Domino Web Server 2026-04-16 N/A
Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via a "Fictionary Value Field POST request" as demonstrated using the s_Validation form with a long, unknown parameter name.
CVE-2005-4513 1 Wandsoft 1 E-search 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in WANDSOFT e-SEARCH allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the keywords parameter.
CVE-1999-0835 3 Ibm, Sco, Sun 4 Aix, Openserver, Unixware and 1 more 2026-04-16 N/A
Denial of service in BIND named via malformed SIG records.