Export limit exceeded: 346895 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346895 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0937 | 2026-04-16 | N/A | ||
| BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable. | ||||
| CVE-1999-0946 | 1 Yamaha | 1 Midiplug | 2026-04-16 | N/A |
| Buffer overflow in Yamaha MidiPlug via a Text variable in an EMBED tag. | ||||
| CVE-1999-0947 | 1 An | 1 An-httpd | 2026-04-16 | N/A |
| AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters. | ||||
| CVE-2005-4557 | 3 Deerfield, Icewarp, Merak | 3 Visnetic Mail Server, Web Mail, Mail Server | 2026-04-16 | N/A |
| dir/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, allows remote attackers to include arbitrary local files via a null byte (%00) in the lang parameter, possibly due to a directory traversal vulnerability. | ||||
| CVE-1999-0951 | 1 Omnicron | 1 Omnihttpd | 2026-04-16 | N/A |
| Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands. | ||||
| CVE-2005-4558 | 3 Deerfield, Icewarp, Merak | 3 Visnetic Mail Server, Web Mail, Mail Server | 2026-04-16 | N/A |
| IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly restrict acceptable values for the language parameter to mail/settings.html before it is stored in a database, which can allow remote authenticated users to include arbitrary PHP code via a URL in a modified lang_settings parameter to mail/index.html. | ||||
| CVE-1999-0954 | 1 Matt Wright | 1 Wwwboard | 2026-04-16 | N/A |
| WWWBoard has a default username and default password. | ||||
| CVE-1999-0955 | 1 Washington University | 1 Wu-ftpd | 2026-04-16 | N/A |
| Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command. | ||||
| CVE-2005-4559 | 3 Deerfield, Icewarp, Merak | 3 Visnetic Mail Server, Web Mail, Mail Server | 2026-04-16 | N/A |
| mail/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly initialize the default_layout and layout_settings variables when an unrecognized HTTP_USER_AGENT string is provided, which allows remote attackers to access arbitrary files via a request with an unrecognized User Agent that also specifies the desired default_layout and layout_settings parameters. | ||||
| CVE-1999-0956 | 1 Next | 1 Nextstep | 2026-04-16 | N/A |
| The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service. | ||||
| CVE-2005-4565 | 1 Adtran | 1 Netvanta | 2026-04-16 | N/A |
| Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | ||||
| CVE-1999-0962 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option. | ||||
| CVE-1999-0963 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| FreeBSD mount_union command allows local users to gain root privileges via a symlink attack. | ||||
| CVE-2005-4567 | 1 Floosietek | 1 Ftgate | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (Build 4.4.000 Oct 26 2005) allow remote attackers to inject arbitrary web script or HTML by sending (1) the href parameter to index.fts, or the param1 parameter to (2) /domains/index.fts, (3) /config/licence.fts, or (4) /config/systemacl.fts. | ||||
| CVE-1999-0968 | 1 James Seter | 1 Bnc Irc | 2026-04-16 | N/A |
| Buffer overflow in BNC IRC proxy allows remote attackers to gain privileges. | ||||
| CVE-1999-0974 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service. | ||||
| CVE-2005-4573 | 1 Plogger | 1 Plogger | 2026-04-16 | N/A |
| PHP remote file include vulnerability in plog-admin-functions.php in Plogger Beta 2 allows remote attackers to execute arbitrary code via a URL in the config[basedir] parameter. | ||||
| CVE-2005-4575 | 1 Paperthin | 1 Commonspot Content Server | 2026-04-16 | N/A |
| PaperThin CommonSpot Content Server 4.5 and earlier allow remote attackers to obtain sensitive information via an invalid errmsg parameter to loader.cfm with a url parameter set to email-login-info.cfm, which leaks the full pathname in the resulting error message. | ||||
| CVE-1999-0975 | 1 Microsoft | 3 Windows 95, Windows 98, Windows Nt | 2026-04-16 | N/A |
| The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed. | ||||
| CVE-2003-0194 | 1 Redhat | 3 Enterprise Linux, Linux, Tcpdump | 2026-04-16 | N/A |
| tcpdump does not properly drop privileges to the pcap user when starting up. | ||||