Export limit exceeded: 360766 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 29946 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29946 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0391 | 1 Microsoft | 3 Terminal Server, Windows 2000, Windows Nt | 2026-04-16 | N/A |
| The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and impersonate a user. | ||||
| CVE-1999-0397 | 2026-04-16 | N/A | ||
| The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext. | ||||
| CVE-1999-0399 | 1 Khaled Mardam-bey | 1 Mirc | 2026-04-16 | N/A |
| The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands. | ||||
| CVE-1999-0408 | 1 Sun | 1 Cobalt Raq | 2026-04-16 | N/A |
| Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server. | ||||
| CVE-2005-4401 | 1 Lutece | 1 Lutece | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Lutece 1.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the query parameter. | ||||
| CVE-2005-4403 | 1 Qcm | 1 Marwel | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Marwel 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the show parameter. | ||||
| CVE-1999-0427 | 1 Qualcomm | 3 Eudora, Eudora Light, Eudora Pro | 2026-04-16 | N/A |
| Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names. | ||||
| CVE-1999-0432 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| ftp on HP-UX 11.00 allows local users to gain privileges. | ||||
| CVE-2005-4404 | 1 Media2 Cms | 1 Media2 Cms Shop | 2026-04-16 | N/A |
| SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. NOTE: the provenance of this issue is unknown; the details were obtained solely from third party sources. | ||||
| CVE-1999-0440 | 2 Netscape, Sun | 3 Communicator, Navigator, Java | 2026-04-16 | N/A |
| The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages. | ||||
| CVE-2005-4405 | 1 Random Mouse Software | 1 Red Queen | 2026-04-16 | N/A |
| redqueen.cgi in Red Queen 1.02 and earlier allows remote attackers to obtain the full server path via invalid (1) yellowpage_id, (2) skin_id, (3) supplier_id, and (4) module parameters, which leaks the path in an error message. | ||||
| CVE-1999-0441 | 1 Qbik | 1 Wingate | 2026-04-16 | N/A |
| Remote attackers can perform a denial of service in WinGate machines using a buffer overflow in the Winsock Redirector Service. | ||||
| CVE-1999-0444 | 1 Microsoft | 3 Windows 95, Windows 98, Windows Nt | 2026-04-16 | N/A |
| Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or filling up log files. | ||||
| CVE-2005-4406 | 1 Tmc Visionpool | 1 Mercury Cms | 2026-04-16 | N/A |
| SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter. | ||||
| CVE-2005-4407 | 1 Tmc Visionpool | 1 Mercury Cms | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in index.cfm in Mercury CMS 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) content and (2) criteria parameters. | ||||
| CVE-1999-0465 | 2026-04-16 | N/A | ||
| Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter. | ||||
| CVE-2005-4408 | 1 Pc Media | 1 Miraserver | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) page parameter to index.php, (2) id parameter to newsitem.php, and (3) cat parameter to article.php. | ||||
| CVE-1999-0466 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device. | ||||
| CVE-1999-0468 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | 8.2 High |
| Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component. | ||||
| CVE-1999-0472 | 2 Network Appliance, Snmp | 2 Netcache, Snmp | 2026-04-16 | N/A |
| The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it. | ||||