Export limit exceeded: 363788 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (363788 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2001-0468 1 Ftpfs 1 Ftpfs 2026-04-16 N/A
Buffer overflow in FTPFS allows local users to gain root privileges via a long user name.
CVE-2001-1313 1 Ibm 1 Lotus Domino R5 2026-04-16 N/A
Lotus Domino R5 before R5.0.7a allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via miscellaneous packets with semi-valid BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.
CVE-2002-1151 2 Kde, Redhat 4 Kde, Konqueror, Enterprise Linux and 1 more 2026-04-16 N/A
The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0 through 3.0.3 does not properly initialize the domains on sub-frames and sub-iframes, which can allow remote attackers to execute script and steal cookies from subframes that are in other domains.
CVE-1999-0579 1 Microsoft 1 Windows Nt 2026-04-16 N/A
A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys.
CVE-1999-0583 2026-04-16 N/A
There is a one-way or two-way trust relationship between Windows NT domains.
CVE-2001-0480 1 Alex Linde 1 Alexs Ftp Server 2026-04-16 N/A
Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands.
CVE-1999-0596 2026-04-16 N/A
A Windows NT log file has an inappropriate maximum size or retention period.
CVE-2001-0481 1 Mandrakesoft 1 Mandrake Linux 2026-04-16 N/A
Vulnerability in rpmdrake in Mandrake Linux 8.0 related to insecure temporary file handling.
CVE-2005-1681 1 Bugada Andrea 1 Php Advanced Transfer Manager 2026-04-16 N/A
PHP remote file inclusion vulnerability in common.php in phpATM 1.21, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the include_location parameter to index.php.
CVE-1999-0604 1 Selena Sol 1 Selena Sol Webstore 2026-04-16 N/A
An incorrect configuration of the WebStore 1.0 shopping cart CGI program "web_store.cgi" could disclose private information.
CVE-1999-0608 1 Pdgsoft 1 Pdg Shopping Cart 2026-04-16 N/A
An incorrect configuration of the PDG Shopping Cart CGI program "shopper.cgi" could disclose private information.
CVE-2002-0070 1 Microsoft 4 Windows 2000, Windows 98, Windows 98se and 1 more 2026-04-16 N/A
Buffer overflow in Windows Shell (used as the Windows Desktop) allows local and possibly remote attackers to execute arbitrary code via a custom URL handler that has not been removed for an application that has been improperly uninstalled.
CVE-2005-3006 1 Opera 1 Opera Browser 2026-04-16 N/A
The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames.
CVE-2002-1238 1 Peter Sandvik 1 Simple Web Server 2026-04-16 N/A
Peter Sandvik's Simple Web Server 0.5.1 and earlier allows remote attackers to bypass access restrictions for files via an HTTP request with a sequence of multiple / (slash) characters such as http://www.example.com///file/.
CVE-2005-3007 1 Opera 1 Opera Browser 2026-04-16 N/A
Opera before 8.50 allows remote attackers to spoof the content type of files via a filename with a trailing "." (dot), which might allow remote attackers to trick users into processing dangerous content.
CVE-2005-3008 1 Amar Sagoo 1 Tofu 2026-04-16 N/A
Tofu 0.2 allows remote attackers to execute arbitrary Python code via crafted pickled objects, which Tofu unpickles and executes.
CVE-2002-0621 1 Microsoft 1 Commerce Server 2026-04-16 N/A
Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package installer.
CVE-2002-1928 1 Software602 1 602pro Lan Suite 2026-04-16 N/A
602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension.
CVE-2005-3648 1 Moodle 1 Moodle 2026-04-16 N/A
Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.
CVE-2005-0521 1 Sendlink 1 Sendlink 2026-04-16 N/A
SendLink 1.5 stores sensitive information, possibly including passwords, in plaintext in the data.eat file, which allows local users to gain privileges.