Export limit exceeded: 346885 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 346885 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346885 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0924 | 1 Allaire | 1 Coldfusion Server | 2026-04-16 | N/A |
| The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service. | ||||
| CVE-2005-4550 | 1 Oracle | 1 Application Server Discussion Forum Portlet | 2026-04-16 | N/A |
| The PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter with a trailing null byte (%00). | ||||
| CVE-1999-0930 | 1 Matt Wright | 1 Wwwboard | 2026-04-16 | N/A |
| wwwboard allows a remote attacker to delete message board articles via a malformed argument. | ||||
| CVE-1999-0934 | 2026-04-16 | N/A | ||
| classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters. | ||||
| CVE-2005-4553 | 1 Kmint21 Software | 1 Golden Ftp Server | 2026-04-16 | N/A |
| Buffer overflow in Golden FTP Server 1.92 allows remote attackers to execute arbitrary code via a long APPE command. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | ||||
| CVE-1999-0935 | 2026-04-16 | N/A | ||
| classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form. | ||||
| CVE-1999-0936 | 2026-04-16 | N/A | ||
| BNBSurvey survey.cgi program allows remote attackers to execute commands via shell metacharacters. | ||||
| CVE-2005-4555 | 1 Dev | 1 Dev Web Management System | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in add.php in DEV web management system 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ENTER_ARTICLE_TITLE, (2) SPECIFY_ZONE, (3) ENTER_ARTICLE_HEADER, and (4) ENTER_ARTICLE_BODY indices in the language array parameter. | ||||
| CVE-1999-0937 | 2026-04-16 | N/A | ||
| BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable. | ||||
| CVE-1999-0946 | 1 Yamaha | 1 Midiplug | 2026-04-16 | N/A |
| Buffer overflow in Yamaha MidiPlug via a Text variable in an EMBED tag. | ||||
| CVE-1999-0947 | 1 An | 1 An-httpd | 2026-04-16 | N/A |
| AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters. | ||||
| CVE-2005-4557 | 3 Deerfield, Icewarp, Merak | 3 Visnetic Mail Server, Web Mail, Mail Server | 2026-04-16 | N/A |
| dir/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, allows remote attackers to include arbitrary local files via a null byte (%00) in the lang parameter, possibly due to a directory traversal vulnerability. | ||||
| CVE-1999-0951 | 1 Omnicron | 1 Omnihttpd | 2026-04-16 | N/A |
| Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands. | ||||
| CVE-2005-4558 | 3 Deerfield, Icewarp, Merak | 3 Visnetic Mail Server, Web Mail, Mail Server | 2026-04-16 | N/A |
| IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly restrict acceptable values for the language parameter to mail/settings.html before it is stored in a database, which can allow remote authenticated users to include arbitrary PHP code via a URL in a modified lang_settings parameter to mail/index.html. | ||||
| CVE-1999-0954 | 1 Matt Wright | 1 Wwwboard | 2026-04-16 | N/A |
| WWWBoard has a default username and default password. | ||||
| CVE-1999-0955 | 1 Washington University | 1 Wu-ftpd | 2026-04-16 | N/A |
| Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command. | ||||
| CVE-2005-4559 | 3 Deerfield, Icewarp, Merak | 3 Visnetic Mail Server, Web Mail, Mail Server | 2026-04-16 | N/A |
| mail/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly initialize the default_layout and layout_settings variables when an unrecognized HTTP_USER_AGENT string is provided, which allows remote attackers to access arbitrary files via a request with an unrecognized User Agent that also specifies the desired default_layout and layout_settings parameters. | ||||
| CVE-1999-0956 | 1 Next | 1 Nextstep | 2026-04-16 | N/A |
| The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service. | ||||
| CVE-2005-4565 | 1 Adtran | 1 Netvanta | 2026-04-16 | N/A |
| Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | ||||
| CVE-1999-0962 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option. | ||||