Search Results (29946 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2006-3406 1 Qto 1 Qtofilemanager 2026-04-16 N/A
Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. (dot dot) sequence in the edit parameter.
CVE-2006-0534 1 Cybershop 1 Asp Ultimate E-commerce Script 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in default.asp in CyberShop Ultimate E-commerce allow remote attackers to inject arbitrary web script or HTML via the (1) ortak or (2) kat parameter.
CVE-2006-3416 1 Tor 1 Tor 2026-04-16 N/A
Tor before 0.1.1.20 kills the circuit when it receives an unrecognized relay command, which causes network circuits to be disbanded. NOTE: while this item is listed under the "Security fixes" section of the developer changelog, the developer clarified on 20060707 that this is only a self-DoS. Therefore this issue should not be included in CVE
CVE-1999-0708 1 Infodrom 1 Cfingerd 2026-04-16 N/A
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
CVE-1999-0710 1 Redhat 2 Enterprise Linux, Linux 2026-04-16 N/A
The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.
CVE-2005-4464 1 Ingate 2 Ingate Firewall, Siparator 2026-04-16 N/A
Ingate Firewall before 4.3.4 and SIParator before 4.3.4 allows remote attackers to cause a denial of service (kernel deadlock) by sending a SYN packet for a TCP stream, which requires an RST packet in response.
CVE-1999-0717 1 Microsoft 5 Excel, Windows 2000, Windows 95 and 2 more 2026-04-16 N/A
A remote attacker can disable the virus warning mechanism in Microsoft Excel 97.
CVE-2005-4466 1 Interactive Intelligence 1 Interaction Sip Proxy 2026-04-16 N/A
Heap-based buffer overflow in the SIPParser function in i3sipmsg.dll in Interaction SIP Proxy before 3.0.011 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a REGISTER request with a SPI version number that contains a large number of space or tab characters.
CVE-2005-4468 1 Phpgedview 1 Phpgedview 2026-04-16 N/A
PHP remote file include vulnerability in help_text_vars.php in PHPGedView 3.3.7 and earlier allows remote attackers to execute arbitrary code via a URL in the PGV_BASE_DIRECTORY parameter.
CVE-1999-0740 1 Redhat 1 Linux 2026-04-16 N/A
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.
CVE-1999-0749 1 Microsoft 2 Windows 95, Windows 98 2026-04-16 N/A
Buffer overflow in Microsoft Telnet client in Windows 95 and Windows 98 via a malformed Telnet argument.
CVE-2005-4477 1 Papaya 1 Papaya Cms 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in papaya CMS 4.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the bab[searchfor] parameter.
CVE-1999-0751 1 Netscape 1 Enterprise Server 2026-04-16 N/A
Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch.
CVE-2005-4480 1 Plexcor 1 Plexcor Cms 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in Plexcor CMS 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters.
CVE-1999-0752 1 Netscape 1 Enterprise Server 2026-04-16 N/A
Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake.
CVE-1999-0769 4 Caldera, Debian, Paul Vixie and 1 more 4 Openlinux, Debian Linux, Vixie Cron and 1 more 2026-04-16 N/A
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
CVE-1999-0772 1 Compaq 2 Insight Management Agent, Power Management 2026-04-16 N/A
Denial of service in Compaq Management Agents and the Compaq Survey Utility via a long string sent to port 2301.
CVE-1999-0775 1 Cisco 1 Ios 2026-04-16 N/A
Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.
CVE-1999-0776 1 Computer Software Manufaktur 1 Alibaba 2026-04-16 N/A
Alibaba HTTP server allows remote attackers to read files via a .. (dot dot) attack.
CVE-2005-4490 1 Commercial Interactive Media 1 Scoop 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in SCOOP! 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) keyword and (2) invalid parameter to articleSearch.asp; (3) username and (4) invalid parameter to lostPassword.asp; (5) Username, (6) Password, and (7) invalid parameter to account_login.asp; (8) area, (9) articleZoneID, (10) r, and (11) invalid parameters to category.asp; and invalid parameters to (12) articleZone.asp, (13) prePurchaserRegistration.asp, and (14) requestDemo.asp.