Export limit exceeded: 350341 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (350341 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-0982 | 1 Yet Another Forum.net | 1 Yet Another Forum.net | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Yet Another Forum.net 0.9.9 allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) location, or (3) Subject field. | ||||
| CVE-1999-1213 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service. | ||||
| CVE-1999-1193 | 1 Next | 1 Next | 2026-04-16 | N/A |
| The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me user to use the su command to become root. | ||||
| CVE-2006-2720 | 1 Variomat | 1 Variomat | 2026-04-16 | N/A |
| SQL injection vulnerability in news.php in VARIOMAT allows remote attackers to execute arbitrary SQL commands via the subcat parameter. | ||||
| CVE-1999-1196 | 1 Hummingbird | 1 Exceed | 2026-04-16 | N/A |
| Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000. | ||||
| CVE-1999-1195 | 1 Network Associates | 1 Virusscan | 2026-04-16 | N/A |
| NAI VirusScan NT 4.0.2 does not properly modify the scan.dat virus definition file during an update via FTP, but it reports that the update was successful, which could cause a system administrator to believe that the definitions have been updated correctly. | ||||
| CVE-1999-1194 | 1 Digital | 1 Ultrix | 2026-04-16 | N/A |
| chroot in Digital Ultrix 4.1 and 4.0 is insecurely installed, which allows local users to gain privileges. | ||||
| CVE-1999-1185 | 1 Sco | 5 Cmw, Internet Faststart, Open Desktop and 2 more | 2026-04-16 | N/A |
| Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file. | ||||
| CVE-2005-3791 | 2 Phpadsnew, Phppgads | 2 Phpadsnew, Phppgads | 2026-04-16 | N/A |
| HTTP response splitting vulnerability in phpAdsNew and phpPgAds 2.0.6 and earlier allows remote attackers to inject arbitrary HTML headers via adclick.php and possibly other unspecified vectors. | ||||
| CVE-2005-3790 | 1 Phpwcms | 1 Phpwcms | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in act_newsletter.php in phpwcms 1.2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) i and (2) text parameters. | ||||
| CVE-1999-1176 | 2 Aaron Ledbetter, Jidentd | 2 Cidentd, Jidentd | 2026-04-16 | N/A |
| Buffer overflow in cidentd ident daemon allows local users to gain root privileges via a long line in the .authlie script. | ||||
| CVE-2006-2712 | 1 Secure Elements | 1 Class 5 Enterprise Vulnerability Management | 2026-04-16 | N/A |
| Secure Elements Class 5 AVR (aka C5 EVM) client and server before 2.8.1 do not verify the integrity of a message digest, which allows remote attackers to modify and replay messages. | ||||
| CVE-2006-2483 | 1 Lighthouse Development | 1 Squirrelcart | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in cart_content.php in Squirrelcart 2.2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cart_isp_root parameter. | ||||
| CVE-2006-2484 | 1 Icewarp | 1 Web Mail | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in index.html in IceWarp WebMail 5.5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter. | ||||
| CVE-2006-2485 | 1 Quezza | 1 Quezza Bb | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in includes/class_template.php in Quezza 1.0 and earlier, and possibly 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the quezza_root_path parameter. | ||||
| CVE-2006-2486 | 1 Yapbb | 1 Yapbb | 2026-04-16 | N/A |
| SQL injection vulnerability in find.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary SQL commands via the userID parameter. | ||||
| CVE-2006-2495 | 1 S9y | 1 Serendipity | 2026-04-16 | N/A |
| Cross-site request forgery (CSRF) vulnerability in the Entry Manager in Serendipity before 1.0-beta3 allows remote attackers to perform unauthorized actions as a logged-in user via a link or IMG tag. | ||||
| CVE-2006-2497 | 1 Aspbb | 1 Aspbb | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in AspBB 0.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) action parameter to default.asp or (2) get parameter to profile.asp. | ||||
| CVE-2006-2499 | 1 Xfairguy | 1 Codeavalanche News | 2026-04-16 | N/A |
| SQL injection vulnerability in default.asp in CodeAvalanche News (CANews) 1.2 allows remote attackers to execute arbitrary SQL commands via the password field. | ||||
| CVE-2005-0779 | 1 Platinumftp | 1 Platinumftpserver | 2026-04-16 | N/A |
| PlatinumFTP 1.0.18, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via multiple connection attempts with a \ (backslash) in the username. | ||||