Export limit exceeded: 29911 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29911 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-2318 | 1 Dvbbs | 1 Dvbbs | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in showerr.asp in DVBBS 7.1 SP2 allows remote attackers to inject arbitrary web script or HTML via the action parameter. | ||||
| CVE-2005-2320 | 1 Webcalendar | 1 Webcalendar | 2026-04-16 | N/A |
| WebCalendar before 1.0.0 does not properly restrict access to assistant_edit.php, which allows remote attackers to gain privileges. | ||||
| CVE-2005-2331 | 1 Moosegallery | 1 Moosegallery | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in display.php in MooseGallery allows remote attackers to execute arbitrary PHP code via the type parameter. | ||||
| CVE-2005-2338 | 1 Xoops | 1 Xoops | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.0.12 JP and earlier, XOOPS 2.0.13.1 and earlier, and 2.2.x up to 2.2.3 RC1 allow remote attackers to inject arbitrary web script or HTML via (1) modules that use "XOOPS Code" and (2) newbb in the forum module. | ||||
| CVE-2005-2339 | 1 Msearch | 1 Unicode Msearch | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in the Unicode version of msearch (unicode-msearch) 1.51(U1)-beta1, 1.51(U1), and 1.52(U1) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
| CVE-2005-2362 | 2 Ethereal Group, Redhat | 2 Ethereal, Enterprise Linux | 2026-04-16 | N/A |
| Unknown vulnerability several dissectors in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a denial of service (application crash) by reassembling certain packets. | ||||
| CVE-2005-2357 | 1 Emc | 1 Navisphere Manager | 2026-04-16 | N/A |
| Directory traversal vulnerability in EMC Navisphere Manager 6.4.1.0.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. | ||||
| CVE-2005-2369 | 2 Ekg, Redhat | 2 Ekg, Enterprise Linux | 2026-04-16 | N/A |
| Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code. | ||||
| CVE-2005-2376 | 1 Codemasters | 1 Toca Race Driver | 2026-04-16 | N/A |
| Buffer overflow in Race Driver 1.20 and earlier allows remote attackers to cause a denial of service (application crash) via a long (1) nickname or (2) chat message. | ||||
| CVE-2005-2397 | 1 Gnu | 1 Phpbook | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in guestbook.php in phpBook 1.46 allows remote attackers to inject arbitrary web script or HTML via the admin parameter. | ||||
| CVE-2005-2521 | 1 Apple | 1 Mac Os X | 2026-04-16 | N/A |
| Buffer overflow in traceroute in Mac OS X 10.3.9 allows local users to execute arbitrary code via unknown vectors. | ||||
| CVE-2005-2394 | 1 Cutephp | 1 Cutenews | 2026-04-16 | N/A |
| show_news.php in CuteNews 1.3.6 allows remote attackers to obtain the full path of the server via an invalid archive parameter. | ||||
| CVE-2005-2396 | 1 Mediawiki | 1 Mediawiki | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template. | ||||
| CVE-2005-2402 | 1 Phpsitesearch | 1 Phpsitesearch | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in search.php in PHPSiteSearch 1.7.7d allows remote attackers to inject arbitrary web script or HTML via the query parameter. | ||||
| CVE-2005-2404 | 1 Sendcard | 1 Sendcard | 2026-04-16 | N/A |
| SQL injection vulnerability in sendcard.php in Sendcard 3.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||||
| CVE-2005-2416 | 1 Astalavista It Engineering | 1 Contrexx | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Contrexx before 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) term parameter to the search module or (2) title in the blog aggregation module. | ||||
| CVE-2005-2413 | 1 Atomic Photo Album | 1 Atomic Photo Album | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in apa_phpinclude.inc.php in Atomic Photo Album (APA) allows remote attackers to execute arbitrary PHP code via the apa_module_basedir parameter. | ||||
| CVE-2005-2415 | 1 Astalavista It Engineering | 1 Contrexx | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in Contrexx before 1.0.5 allow remote attackers to execute arbitrary SQL commands via the (1) value parameter to the poll module or (2) pId parameter to the gallery module. | ||||
| CVE-2005-2426 | 1 Ftpshell | 1 Ftpshell Server | 2026-04-16 | N/A |
| FTPshell Server 3.38 allows remote authenticated users to cause a denial of service (application crash) by multiple connections and disconnections without using the QUIT command. | ||||
| CVE-2005-2421 | 1 Beehive Forum | 1 Beehive Forum | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in index.php and other pages in Beehive Forum allow remote attackers to execute arbitrary SQL commands via the webtag parameter. | ||||