Export limit exceeded: 361694 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 361694 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (361694 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0902 | 1 Nathan Purciful | 1 Phpphotoalbum | 2026-04-16 | N/A |
| getalbum.php in PhotoAlbum before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2001-0804 | 1 Valerie Mates | 1 Interactive Story | 2026-04-16 | N/A |
| Directory traversal vulnerability in story.pl in Interactive Story 1.3 allows a remote attacker to read arbitrary files via a .. (dot dot) attack on the "next" parameter. | ||||
| CVE-2000-0900 | 1 Acme Labs | 1 Thttpd | 2026-04-16 | N/A |
| Directory traversal vulnerability in ssi CGI program in thttpd 2.19 and earlier allows remote attackers to read arbitrary files via a "%2e%2e" string, a variation of the .. (dot dot) attack. | ||||
| CVE-2001-0801 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| lpstat in IRIX 6.5.13f and earlier allows local users to gain root privileges by specifying a Trojan Horse nettype shared library. | ||||
| CVE-2002-0418 | 1 Endymion | 1 Sake Mail | 2026-04-16 | N/A |
| Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the param_name parameter. | ||||
| CVE-2000-0880 | 1 Plus Technologies | 1 Lpplus | 2026-04-16 | N/A |
| LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file. | ||||
| CVE-2000-0876 | 1 Texas Imperial Software | 2 Wftpd, Wftpd Pro | 2026-04-16 | N/A |
| WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname. | ||||
| CVE-2000-0852 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges. | ||||
| CVE-2001-0796 | 2 Freebsd, Sgi | 2 Freebsd, Irix | 2026-04-16 | N/A |
| SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service via a malformed IGMP multicast packet with a small response delay. | ||||
| CVE-2000-0874 | 1 Qualcomm | 1 Eudora | 2026-04-16 | N/A |
| Eudora mail client includes the absolute path of the sender's host within a virtual card (VCF). | ||||
| CVE-2001-0792 | 1 Xchat | 1 Xchat | 2026-04-16 | N/A |
| Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a malformed nickname. | ||||
| CVE-2000-0872 | 1 Nathan Purciful | 1 Phpphotoalbum | 2026-04-16 | N/A |
| explorer.php in PhotoAlbum 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0863 | 1 Listmanager | 1 Linux | 2026-04-16 | N/A |
| Buffer overflow in listmanager earlier than 2.105.1 allows local users to gain additional privileges. | ||||
| CVE-2000-0831 | 1 Fastream | 1 Ftp\+\+ Server | 2026-04-16 | N/A |
| Buffer overflow in Fastream FTP++ 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long username. | ||||
| CVE-2000-0828 | 1 Mobius | 1 Documentdirect For The Internet | 2026-04-16 | N/A |
| Buffer overflow in ddicgi.exe in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long User-Agent parameter. | ||||
| CVE-2000-0862 | 1 Allaire | 1 Spectra | 2026-04-16 | N/A |
| Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote attackers to read and modify sensitive configuration information. | ||||
| CVE-2002-1226 | 1 Kth | 1 Heimdal | 2026-04-16 | N/A |
| Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002-1225). | ||||
| CVE-2002-0930 | 1 Novell | 1 Netware | 2026-04-16 | N/A |
| Format string vulnerability in the FTP server for Novell Netware 6.0 SP1 (NWFTPD) allows remote attackers to cause a denial of service (ABEND) via format strings in the USER command. | ||||
| CVE-2000-0724 | 1 Helix Code | 1 Go-gnome Pre-installer | 2026-04-16 | N/A |
| The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files. | ||||
| CVE-2001-0754 | 1 Cisco | 1 Cbos | 2026-04-16 | N/A |
| Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via a series of large ICMP ECHO REPLY (ping) packets, which cause it to enter ROMMON mode and stop forwarding packets. | ||||