Export limit exceeded: 349675 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 349675 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 349675 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (349675 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-1418 | 1 Netleaf Limited | 1 Notjustbrowsing | 2026-04-16 | N/A |
| NetLeaf Limited NotJustBrowsing 1.0.3 stores the View Lock Password in plaintext in the notjustbrowsing.prf file, which allows local users to gain privileges. | ||||
| CVE-2005-1419 | 1 Ocean12 Technologies | 1 Mailing List Manager | 2026-04-16 | N/A |
| SQL injection vulnerability in the admin login panel for Ocean12 Mailing List Manager 1.06 allows remote attackers to execute arbitrary SQL commands via the Admin_id parameter. | ||||
| CVE-2005-1420 | 1 Raysoft | 1 Video Cam Server | 2026-04-16 | N/A |
| Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to determine the full pathname of the server via a request for an invalid page, as demonstrated using "%20" (hex-encoded space). | ||||
| CVE-2005-1421 | 1 Raysoft | 1 Video Cam Server | 2026-04-16 | N/A |
| Directory traversal vulnerability in Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to read arbitrary files via ".." (dot dot) sequences in an HTTP request. | ||||
| CVE-2005-1422 | 1 Raysoft | 1 Video Cam Server | 2026-04-16 | N/A |
| Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to conduct administrator operations and cause a denial of service (server or camera shutdown) via a direct request to admin.html. | ||||
| CVE-2005-1423 | 1 Software602 | 1 602lan Suite | 2026-04-16 | N/A |
| Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote attackers to cause a denial of service and determine the presence of arbitrary files via .. sequences in the A parameter. | ||||
| CVE-2005-1424 | 1 Stumbleinside | 1 Gotext | 2026-04-16 | N/A |
| StumbleInside GoText 1.01 stores sensitive username, mail address,and phone number information in plaintext in the GoText.bin file, which allows local users to obtain that information. | ||||
| CVE-2005-1426 | 1 Uapplication | 1 Ublog | 2026-04-16 | N/A |
| Uapplication Ublog Reload stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/blog.mdb (aka mdb-database/blog.msb). | ||||
| CVE-2005-1446 | 1 Sitepanel | 1 Sitepanel | 2026-04-16 | N/A |
| SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to upload and execute arbitrary files such as PHP scripts via an attachment to a trouble ticket. | ||||
| CVE-2005-1447 | 1 Sitepanel | 1 Sitepanel | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in main.php in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to execute arbitrary PHP code via the p parameter. | ||||
| CVE-2005-1448 | 1 S9y | 1 Serendipity | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. | ||||
| CVE-2005-1449 | 1 S9y | 1 Serendipity | 2026-04-16 | N/A |
| Unknown vulnerability in serendipity_config_local.inc.php for Serendipity before 0.8 has unknown impact. | ||||
| CVE-2005-1450 | 1 S9y | 1 Serendipity | 2026-04-16 | N/A |
| Unknown vulnerability in "the function used to validate path-names for uploading media" in Serendipity before 0.8 has unknown impact. | ||||
| CVE-2005-1451 | 1 S9y | 1 Serendipity | 2026-04-16 | N/A |
| The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files. | ||||
| CVE-2005-1443 | 1 Invision Power Services | 1 Invision Power Board | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in index.php for Invision Power Board (IPB) 2.0.3 and 2.1 Alpha 2 allows remote attackers to inject arbitrary web script or HTML via the (1) act, (2) Members, (3) calendar, or (4) HID parameters. | ||||
| CVE-2005-1444 | 1 Sitepanel | 1 Sitepanel | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to inject arbitrary web script or HTML via (1) the v, show, or sec_name parameters to main.php, (2) the inadmin, newsev, or postid parameters to 5.php, or (3) the id parameter to 0.php. | ||||
| CVE-2005-1454 | 2 Freeradius, Redhat | 2 Freeradius, Enterprise Linux | 2026-04-16 | N/A |
| SQL injection vulnerability in the radius_xlat function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via (1) group_membership_query, (2) simul_count_query, or (3) simul_verify_query configuration entries. | ||||
| CVE-2005-1455 | 2 Freeradius, Redhat | 2 Freeradius, Enterprise Linux | 2026-04-16 | N/A |
| Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote attackers to cause a denial of service (crash). | ||||
| CVE-2005-1456 | 2 Ethereal Group, Redhat | 2 Ethereal, Enterprise Linux | 2026-04-16 | N/A |
| Multiple unknown vulnerabilities in the (1) DHCP and (2) Telnet dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (abort). | ||||
| CVE-2005-1457 | 2 Ethereal Group, Redhat | 2 Ethereal, Enterprise Linux | 2026-04-16 | N/A |
| Multiple unknown vulnerabilities in the (1) AIM, (2) LDAP, (3) FibreChannel, (4) GSM_MAP, (5) SRVLOC, and (6) NTLMSSP dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash). | ||||