Export limit exceeded: 359608 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 359608 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359608 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2004-1192 | 1 Citadel | 1 Ux | 2026-04-16 | N/A |
| Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server. | ||||
| CVE-2004-1202 | 1 Phpcms | 1 Phpcms | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to inject arbitrary web script or HTML via the file parameter. | ||||
| CVE-2005-1717 | 1 Zyxel | 1 Prestige 650r-31 | 2026-04-16 | N/A |
| ZyXEL Prestige 650R-31 router running ZyNOS FW v3.40(KO.1) allows remote attackers to cause a denial of service (CPU consumption and network loss) via crafted fragmented IP packets. | ||||
| CVE-2001-0428 | 1 Cisco | 1 Vpn 3000 Concentrator Series Software | 2026-04-16 | N/A |
| Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via an IP packet with an invalid IP option. | ||||
| CVE-2004-1220 | 1 Digital Illusions | 2 Battlefield 1942, Battlefield Vietnam | 2026-04-16 | N/A |
| Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numplayers value, which triggers a null dereference. | ||||
| CVE-2005-3989 | 1 Avaya | 1 Tn2602ap Ip Media Resource 320 Circuit Pack | 2026-04-16 | N/A |
| Memory leak in Avaya TN2602AP IP Media Resource 320 circuit pack before vintage 9 firmware allows remote attackers to cause a denial of service (memory consumption) via crafted VoIP packets. | ||||
| CVE-2004-1230 | 1 Gadu-gadu | 1 Gadu-gadu Instant Messenger | 2026-04-16 | N/A |
| Gadu-Gadu allows remote attackers to gain sensitive information and read files from the _cache directory of other users via a DCC connection and a CTCP packet that contains a 1 as the type and a 4 as the subtype. | ||||
| CVE-2005-1727 | 1 Apple | 1 Mac Os X Server | 2026-04-16 | N/A |
| Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions." | ||||
| CVE-2005-3991 | 1 Phpheaven | 1 Phpmychat | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in phpMyChat 0.14.6 allow remote attackers to inject arbitrary web script or HTML via the medium parameter to (1) start_page.css.php and (2) style.css.php; or the From parameter to users_popupL.php. | ||||
| CVE-2004-0011 | 1 Debian | 1 Fsp | 2026-04-16 | N/A |
| Buffer overflow in fsp before 2.81.b18 allows remote users to execute arbitrary code. | ||||
| CVE-2000-0735 | 1 Rimarts Inc. | 1 Becky Internet Mail | 2026-04-16 | N/A |
| Buffer overflow in Becky! Internet Mail client 1.26.03 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user replies to a message. | ||||
| CVE-2005-3969 | 1 Mxchange | 1 Mxchange | 2026-04-16 | N/A |
| SQL injection vulnerability in MXChange before 0.2.0-pre10 PL492 allows remote attackers to execute arbitrary SQL commands via unknown vectors. | ||||
| CVE-2005-1480 | 1 Raiden Professional Servers | 1 Raidenftpd | 2026-04-16 | N/A |
| Directory traversal vulnerability in RaidenFTPD before 2.4.2241 allows remote attackers to read arbitrary files via a "..\\" (dot dot backslash) in the urlget site command. | ||||
| CVE-2000-0693 | 1 Tech-source | 1 Raptor Gfx Pgx32 | 2026-04-16 | N/A |
| pgxconfig in the Raptor GFX configuration tool uses a relative path name for a system call to the "cp" program, which allows local users to execute arbitrary commands by modifying their path to point to an alternate "cp" program. | ||||
| CVE-2005-3968 | 1 Phpx | 1 Phpx | 2026-04-16 | N/A |
| SQL injection vulnerability in auth.inc.php in PHPX 3.5.9 and earlier allows remote attackers to execute arbitrary SQL commands, bypass authentication, and upload arbitrary PHP code via the username parameter. | ||||
| CVE-2005-1471 | 1 Rsa | 1 Securid Web Agent | 2026-04-16 | N/A |
| Heap-based buffer overflow in RSA SecurID Web Agent 5, 5.2, and 5.3 allows remote attackers to execute arbitrary code via crafted chunked-encoding data. | ||||
| CVE-2000-0665 | 1 Gamsoft | 1 Telsrv | 2026-04-16 | N/A |
| GAMSoft TelSrv telnet server 1.5 and earlier allows remote attackers to cause a denial of service via a long username. | ||||
| CVE-2000-0664 | 1 Analogx | 1 Simpleserver Www | 2026-04-16 | N/A |
| AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots. | ||||
| CVE-2005-3960 | 1 Kadu | 1 Kadu | 2026-04-16 | N/A |
| Kadu 0.4.2 and 0.5.0pre allows remote attackers to cause a denial of service (crash or generated traffic) via a malformed message, possibly with incomplete information. | ||||
| CVE-2005-3958 | 1 Entergal Mx | 1 Entergal Mx | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Entergal MX 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) idcat parameter in a showcat action and (2) the action parameter. | ||||