Export limit exceeded: 346645 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346645 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-4378 | 1 Nma | 1 Baseline Cms | 2026-04-16 | N/A |
| SQL injection vulnerability in Page.asp in Baseline CMS 1.95 and earlier allows remote attackers to execute arbitrary SQL commands via the SiteNodeID parameter. | ||||
| CVE-2005-4379 | 1 Bitweaver | 1 Bitweaver | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to inject arbitrary web script or HTML via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) messages/message_box.php, and (c) users/my.php; the (2) post_id parameter to (d) blogs/view_post.php; the (3) blog_id parameter to (e) blogs/view.php; and the (4) search field to (f) users/my_groups.php. | ||||
| CVE-1999-0353 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory. | ||||
| CVE-2005-4380 | 1 Bitweaver | 1 Bitweaver | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to execute arbitrary SQL commands via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) messages/message_box.php, and (c) users/my.php; the (2) post_id parameter to (d) blogs/view_post.php; and the (3) blog_id parameter to (e) blogs/view.php, which are not properly cleansed by the convert_sortmode function in kernel/BitDb.php. | ||||
| CVE-1999-0354 | 1 Microsoft | 2 Internet Explorer, Word | 2026-04-16 | N/A |
| Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message. | ||||
| CVE-2005-4384 | 1 Citysoft | 1 Community Enterprise | 2026-04-16 | N/A |
| CitySoft Community Enterprise 4.x allows remote attackers to obtain the full path of the server via an invalid (1) fuseaction parameter to index.cfm and (2) documentid parameter to document/docWindow.cfm. | ||||
| CVE-2005-4386 | 1 Colony | 4 Colony Cms, Colony E-commerce Cms, Colony Enterprise Cms and 1 more | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Colony CMS 2.75 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters. | ||||
| CVE-1999-0357 | 1 Microsoft | 1 Windows 98 | 2026-04-16 | N/A |
| Windows 98 and other operating systems allows remote attackers to cause a denial of service via crafted "oshare" packets, possibly involving invalid fragmentation offsets. | ||||
| CVE-1999-0360 | 1 Microsoft | 1 Site Server | 2026-04-16 | N/A |
| MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotely. | ||||
| CVE-1999-0362 | 1 Ipswitch | 1 Ws Ftp Server | 2026-04-16 | N/A |
| WS_FTP server remote denial of service through cwd command. | ||||
| CVE-2005-4387 | 1 Contenite | 1 Contenite | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in home.php in contenite 0.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter. | ||||
| CVE-1999-0363 | 2 Plp, Suse | 2 Line Printer Control, Suse Linux | 2026-04-16 | N/A |
| SuSE 5.2 PLP lpc program has a buffer overflow that leads to root compromise. | ||||
| CVE-1999-0367 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| NetBSD netstat command allows local users to access kernel memory. | ||||
| CVE-2005-4388 | 1 Contens | 1 Contens | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in search.cfm in CONTENS 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the near parameter. | ||||
| CVE-1999-0368 | 7 Caldera, Debian, Proftpd Project and 4 more | 8 Openlinux, Debian Linux, Proftpd and 5 more | 2026-04-16 | N/A |
| Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto. | ||||
| CVE-2005-4390 | 1 Contentserv | 1 Contentserv | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in ContentServ 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the StoryID parameter. | ||||
| CVE-1999-0373 | 1 Debian | 1 Debian Linux | 2026-04-16 | N/A |
| Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root. | ||||
| CVE-1999-0374 | 1 Debian | 1 Debian Linux | 2026-04-16 | N/A |
| Debian GNU/Linux cfengine package is susceptible to a symlink attack. | ||||
| CVE-2005-4391 | 1 Mindroute Software | 1 Damoon | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in damoon allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the q parameter. | ||||
| CVE-1999-0377 | 1 Unix | 1 Unix | 2026-04-16 | N/A |
| Process table attack in Unix systems allows a remote attacker to perform a denial of service by filling a machine's process tables through multiple connections to network services. | ||||