Export limit exceeded: 29914 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29914 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2004-1209 | 1 Verisign | 1 Payflow Link | 2026-04-16 | N/A |
| Verisign Payflow Link, when running with empty Accepted URL fields, does not properly verify the data in the hidden AMOUNT field, which allows remote attackers to modify the price of the items that they purchase. | ||||
| CVE-2004-1212 | 1 Blog Torrent | 1 Blog Torrent Preview | 2026-04-16 | N/A |
| Directory traversal vulnerability in btdownload.php in Blog Torrent preview 0.8 allows remote attackers to download arbitrary files via a .. (dot dot) in the file argument. | ||||
| CVE-2004-1213 | 1 Advanced Guestbook | 1 Advanced Guestbook | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter. | ||||
| CVE-2004-1214 | 1 Burut | 1 Kreed | 2026-04-16 | N/A |
| Format string vulnerability in Kreed 1.05 and earlier allows remote attackers to execute arbitrary code via format specifiers in (1) a nickname or (2) message text. | ||||
| CVE-2004-1215 | 1 Burut | 1 Kreed | 2026-04-16 | N/A |
| Kreed 1.05 and earlier allows remote attackers to cause a denial of service (server disconnect) via a long UDP packet, which causes a "message too long" socket error. | ||||
| CVE-2004-1216 | 1 Burut | 1 Kreed | 2026-04-16 | N/A |
| The scripts that handle players in Kreed 1.05 and earlier allow remote attackers to cause a denial of service (server freeze) via a long (1) nickname or (2) model type, which generates dialog boxes on the server that must be manually handled before the server continues the game. | ||||
| CVE-2004-1217 | 1 Hosting Controller | 1 Hosting Controller | 2026-04-16 | N/A |
| Hosting Controller 6.1 Hotfix 1.4, and possibly other versions, allows remote attackers to view arbitrary directories by specifying the target pathname in the FilePath parameter to (1) Statsbrowse.asp or (2) Generalbrowse.asp. | ||||
| CVE-2004-1218 | 1 Ibex Software | 1 Remote Execute | 2026-04-16 | N/A |
| Remote Execute 2.30 allows remote attackers to cause a denial of service (application crash) by making 7 simultaneous connections. | ||||
| CVE-2004-1220 | 1 Digital Illusions | 2 Battlefield 1942, Battlefield Vietnam | 2026-04-16 | N/A |
| Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numplayers value, which triggers a null dereference. | ||||
| CVE-2004-1222 | 1 Darryl Burgdorf | 1 Weblibs | 2026-04-16 | N/A |
| weblibs.pl in WebLibs 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the TextFile parameter. | ||||
| CVE-2004-1223 | 1 F-secure | 1 Policy Manager | 2026-04-16 | N/A |
| The Management Agent in F-Secure Policy Manager 5.11.2810 allows remote attackers to gain sensitive information, such as the absolute path for the web server, via an HTTP request to fsmsh.dll without any parameters. | ||||
| CVE-2004-1244 | 1 Microsoft | 1 Windows Media Player | 2026-04-16 | N/A |
| Windows Media Player 9 allows remote attackers to execute arbitrary code via a PNG file containing large (1) width or (2) height values, aka the "PNG Processing Vulnerability." | ||||
| CVE-2004-1271 | 1 Dxfscope | 1 Dxf File Format Viewer | 2026-04-16 | N/A |
| Buffer overflow in the dxfin function in d.c for dxfscope 0.2 allows remote attackers to execute arbitrary code via a crafted DXF file. | ||||
| CVE-2004-2235 | 1 Moodle | 1 Moodle | 2026-04-16 | N/A |
| Unknown vulnerability in Moodle before 1.2 has unknown impact and attack vectors, related to improper filtering of text. | ||||
| CVE-2004-1257 | 1 Abc2mtex | 1 Abc2mtex | 2026-04-16 | N/A |
| Buffer overflow in the process_abc function in abc.c for abc2mtex 1.6.1 allows remote attackers to execute arbitrary code via crafted ABC files. | ||||
| CVE-2004-1259 | 1 Abcpp | 1 Abcpp | 2026-04-16 | N/A |
| Multiple buffer overflows in the handle_directive function in abcpp.c for abcpp 1.3.0 allow remote attackers to execute arbitrary code via crafted ABC files. | ||||
| CVE-2004-1260 | 1 Abctab2ps | 1 Abctab2ps | 2026-04-16 | N/A |
| Multiple buffer overflows in the (1) write_heading function in subs.cpp or (2) trim_title function in parse.cpp for abctab2ps 1.6.3 allow remote attackers to execute arbitrary code via crafted ABC files. | ||||
| CVE-2004-1261 | 1 Asp2php | 1 Asp2php | 2026-04-16 | N/A |
| Multiple buffer overflows in the preparse function in asp2php 0.76.23 allow remote attackers to execute arbitrary code via crafted ASP scripts. | ||||
| CVE-2004-1262 | 1 Stuart Cunningham | 1 Bsb2ppm | 2026-04-16 | N/A |
| Buffer overflow in the bsb_open_header function in libbsb for bsb2ppm 0.0.6 allows remote attackers to execute arbitrary code via crafted BSB pictures. | ||||
| CVE-2004-1264 | 1 Chbg | 1 Chbg | 2026-04-16 | N/A |
| Buffer overflow in the simplify_path function in config.c for ChBg 1.5 allows remote attackers to execute arbitrary code via a crafted chbg scenario file. | ||||