Export limit exceeded: 349406 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 349406 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (349406 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0997 | 3 Millenux Gmbh, Redhat, University Of Washington | 3 Anonftp, Linux, Wu-ftpd | 2026-04-16 | N/A |
| wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress. | ||||
| CVE-1999-0998 | 1 Cisco | 1 Cache Engine | 2026-04-16 | N/A |
| Cisco Cache Engine allows an attacker to replace content in the cache. | ||||
| CVE-2006-3486 | 2 Mysql, Oracle | 2 Mysql, Mysql | 2026-04-16 | N/A |
| Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local users to cause a denial of service (application crash) via unspecified vectors, which triggers the overflow when the convert_dirname function is called. NOTE: the vendor has disputed this issue via e-mail to CVE, saying that it is only exploitable when the user has access to the configuration file or the Instance Manager daemon. Due to intended functionality, this level of access would already allow the user to disrupt program operation, so this does not cross security boundaries and is not a vulnerability | ||||
| CVE-2006-3487 | 1 Virtuastore | 1 Virtuastore | 2026-04-16 | N/A |
| VirtuaStore 2.0 stores sensitive files under the web root with insufficient access control, which allows remote attackers to obtain local database information by directly accessing database/virtuastore.mdb. | ||||
| CVE-2006-3488 | 1 Virtuastore | 1 Virtuastore | 2026-04-16 | N/A |
| Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim. | ||||
| CVE-2006-3489 | 1 F-secure | 3 F-secure Anti-virus, F-secure Internet Security, F-secure Service Platform For Service Providers | 2026-04-16 | N/A |
| F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename. | ||||
| CVE-1999-0999 | 1 Microsoft | 1 Sql Server | 2026-04-16 | N/A |
| Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet. | ||||
| CVE-1999-1000 | 1 Cisco | 1 Cache Engine | 2026-04-16 | N/A |
| The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics. | ||||
| CVE-2006-3490 | 1 F-secure | 3 F-secure Anti-virus, F-secure Internet Security, F-secure Service Platform For Service Providers | 2026-04-16 | N/A |
| F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls. | ||||
| CVE-1999-1001 | 1 Cisco | 1 Cache Engine | 2026-04-16 | N/A |
| Cisco Cache Engine allows a remote attacker to gain access via a null username and password. | ||||
| CVE-1999-1002 | 1 Netscape | 1 Communicator | 2026-04-16 | N/A |
| Netscape Navigator uses weak encryption for storing a user's Netscape mail password. | ||||
| CVE-1999-1003 | 1 Jgaa | 1 Warftpd | 2026-04-16 | N/A |
| War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections. | ||||
| CVE-1999-1004 | 1 Symantec | 1 Norton Antivirus | 2026-04-16 | N/A |
| Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. | ||||
| CVE-1999-1005 | 2 Netscape, Novell | 2 Enterprise Server, Groupwise | 2026-04-16 | N/A |
| Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. | ||||
| CVE-2006-3510 | 1 Microsoft | 1 Ie | 2026-04-16 | N/A |
| The Remote Data Service Object (RDS.DataControl) in Microsoft Internet Explorer 6 on Windows 2000 allows remote attackers to cause a denial of service (crash) via a series of operations that result in an invalid length calculation when using SysAllocStringLen, then triggers a buffer over-read. | ||||
| CVE-2006-3514 | 1 Phpblogger | 1 Php-blogger | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in admin/actions.php in PHP-Blogger 2.2.5, and possibly earlier versions, allow remote attackers to execute arbitrary web script or HTML via the (1) name, (2) title, (3) news, (4) description, and (5) sitename parameters. | ||||
| CVE-2006-3522 | 1 Clearswift | 1 Mimesweeper For Web | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back in an error message when trying to access a blocked web site. | ||||
| CVE-2006-3524 | 1 Sipfoundry | 1 Sipxtapi | 2026-04-16 | N/A |
| Buffer overflow in SIPfoundry sipXtapi released before 20060324 allows remote attackers to execute arbitrary code via a long CSeq field value in an INVITE message. | ||||
| CVE-1999-1006 | 1 Novell | 1 Groupwise | 2026-04-16 | N/A |
| Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter. | ||||
| CVE-2006-3527 | 1 Bosdev | 1 Bosclassifieds Classified Ads | 2026-04-16 | N/A |
| Multiple PHP remote file inclusion vulnerabilities in BosClassifieds Classified Ads allow remote attackers to execute arbitrary PHP code via a URL in the insPath parameter to (1) index.php, (2) recent.php, (3) account.php, (4) classified.php, or (5) search.php. | ||||