Search Results (366002 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0416 1 Cisco 1 Cisco 7xx Routers 2026-04-16 N/A
Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port.
CVE-2006-1603 1 Phpbb Group 1 Phpbb 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in profile.php in phpBB 2.0.19 allows remote attackers to inject arbitrary web script or HTML via the cur_password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-1999-0406 1 Digital 1 Unix 2026-04-16 N/A
Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege.
CVE-2000-0899 1 Max Feoktistov 1 Small Http Server 2026-04-16 N/A
Small HTTP Server 2.01 allows remote attackers to cause a denial of service by connecting to the server and sending out multiple GET, HEAD, or POST requests and closing the connection before the server responds to the requests.
CVE-1999-0396 2 Netbsd, Openbsd 2 Netbsd, Openbsd 2026-04-16 N/A
A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service.
CVE-1999-0394 2026-04-16 N/A
DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.
CVE-1999-0340 1 Slackware 1 Slackware Linux 2026-04-16 N/A
Buffer overflow in Linux Slackware crond program allows local users to gain root access.
CVE-2006-4474 1 Joomla 1 Joomla 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.11 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) Admin Module Manager, (2) Admin Help, and (3) Search.
CVE-1999-0320 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files.
CVE-2006-1584 1 Juliusz Julas Gonera 1 Warcraft Iii Replay Parser Php 2026-04-16 N/A
Unspecified vulnerability in index.php in Warcraft III Replay Parser for PHP 1.8c allows remote attackers to inject arbitrary web script or HTML via the page parameter, possibly related to fopen function calls or file uploads. NOTE: post-disclosure analysis by CVE suggests that the "page" parameter is not used in this product, and "id" might be the affected parameter.
CVE-2006-1577 1 Mantis 1 Mantis 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in view_all_set.php in Mantis 1.0.1, 1.0.0rc5, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) start_day, (2) start_year, and (3) start_month parameters.
CVE-2006-1574 1 Hitachi 4 Groupmax World Wide Web, Groupmax World Wide Web Desktop, Groupmax World Wide Web Desktop Scheduler and 1 more 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web, World Wide Web Desktop, World Wide Web for Scheduler, and Desktop for Scheduler, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
CVE-2006-1563 1 Vscripts 1 Vbook 2026-04-16 N/A
Direct static code injection vulnerability in config.php in vscripts (aka Kuba Kunkiewicz) [V]Book (aka VBook) 2.0 allows remote administrators to execute arbitrary PHP code into the config file, which is included other [V]Book scripts.
CVE-2006-3580 1 Asp Stats Generator 1 Asp Stats Generator 2026-04-16 N/A
SQL injection vulnerability in pages.asp in ASP Stats Generator before 2.1.2 allows remote attackers to execute arbitrary SQL commands via the order parameter.
CVE-2006-1559 1 Php 1 Php Script Index 2026-04-16 N/A
SQL injection vulnerability in PHP Script Index allows remote attackers to execute arbitrary SQL commands via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-1558 1 Php 1 Php Script Index 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in search.php in PHP Script Index allows remote attackers to inject arbitrary web script or HTML via the search parameter.
CVE-2000-0878 1 Ranson Johnson 1 Mailto Cgi Script 2026-04-16 N/A
The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field.
CVE-2006-1554 1 Tachyon 1 Vsns Lemon 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in VSNS Lemon 3.2.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter while adding a comment.
CVE-2000-0871 1 Khamil Landross And Zack Jones 1 Eftp 2026-04-16 N/A
Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.
CVE-1999-0268 1 Metainfo 1 Metaweb 2026-04-16 N/A
MetaInfo MetaWeb web server allows users to upload, execute, and read scripts.