Export limit exceeded: 346661 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346661 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-4397 | 1 Icms Content Management Systems | 1 Icms | 2026-04-16 | N/A |
| SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter. | ||||
| CVE-1999-0391 | 1 Microsoft | 3 Terminal Server, Windows 2000, Windows Nt | 2026-04-16 | N/A |
| The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and impersonate a user. | ||||
| CVE-1999-0397 | 2026-04-16 | N/A | ||
| The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext. | ||||
| CVE-1999-0399 | 1 Khaled Mardam-bey | 1 Mirc | 2026-04-16 | N/A |
| The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands. | ||||
| CVE-1999-0408 | 1 Sun | 1 Cobalt Raq | 2026-04-16 | N/A |
| Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server. | ||||
| CVE-2005-4401 | 1 Lutece | 1 Lutece | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Lutece 1.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the query parameter. | ||||
| CVE-1999-0422 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set. | ||||
| CVE-2005-4403 | 1 Qcm | 1 Marwel | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Marwel 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the show parameter. | ||||
| CVE-1999-0423 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges. | ||||
| CVE-1999-0427 | 1 Qualcomm | 3 Eudora, Eudora Light, Eudora Pro | 2026-04-16 | N/A |
| Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names. | ||||
| CVE-1999-0432 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| ftp on HP-UX 11.00 allows local users to gain privileges. | ||||
| CVE-2005-4404 | 1 Media2 Cms | 1 Media2 Cms Shop | 2026-04-16 | N/A |
| SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. NOTE: the provenance of this issue is unknown; the details were obtained solely from third party sources. | ||||
| CVE-1999-0440 | 2 Netscape, Sun | 3 Communicator, Navigator, Java | 2026-04-16 | N/A |
| The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages. | ||||
| CVE-2005-4405 | 1 Random Mouse Software | 1 Red Queen | 2026-04-16 | N/A |
| redqueen.cgi in Red Queen 1.02 and earlier allows remote attackers to obtain the full server path via invalid (1) yellowpage_id, (2) skin_id, (3) supplier_id, and (4) module parameters, which leaks the path in an error message. | ||||
| CVE-1999-0441 | 1 Qbik | 1 Wingate | 2026-04-16 | N/A |
| Remote attackers can perform a denial of service in WinGate machines using a buffer overflow in the Winsock Redirector Service. | ||||
| CVE-2005-4261 | 1 Positive Software | 1 Cp\+ | 2026-04-16 | N/A |
| Unspecified vulnerability in Positive Software Corporation CP+ (cpplus) before 2.5.5 allows attackers to have unknown impact and attack vectors, related to "a possible security flaw caused by a bug in Perl." NOTE: unless CP+ includes its own copy of Perl with CVE-2005-3962, this is a different vulnerability than CVE-2005-3962; however, there is insufficient information to be sure. | ||||
| CVE-1999-0016 | 6 Cisco, Gnu, Hp and 3 more | 8 Ios, Inet, Hp-ux and 5 more | 2026-04-16 | N/A |
| Land IP denial of service. | ||||
| CVE-2003-0126 | 1 Multitech | 1 Routefinder 550 Vpn | 2026-04-16 | N/A |
| The web interface for SOHO Routefinder 550 firmware 4.63 and earlier, and possibly later versions, has a default "admin" account with a blank password, which could allow attackers on the LAN side to conduct unauthorized activities. | ||||
| CVE-2006-3756 | 1 Geeklog | 1 Geeklog | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Geeklog 1.4.0sr4 and earlier, and 1.3.11sr6 and earlier, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors when validating comments in (1) lib-comment.php (1.4.0sr4) or (2) comment.php (0.3.11sr6). | ||||
| CVE-2006-3760 | 1 Mybulletinboard | 1 Mybulletinboard | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) 1.1.4 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. | ||||