Export limit exceeded: 345315 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (345315 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-2111 | 1 Microsoft | 1 Outlook Express | 2026-04-16 | N/A |
| A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Information Disclosure Vulnerability." | ||||
| CVE-2006-2119 | 1 Artmedic Webdesign | 1 Artmedic Event | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in event/index.php in Artmedic Event allows remote attackers to execute arbitrary code via a URL in the page parameter. | ||||
| CVE-2006-2120 | 2 Libtiff, Redhat | 2 Libtiff, Enterprise Linux | 2026-04-16 | N/A |
| The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read. | ||||
| CVE-1999-0330 | 1 Linux | 1 Linux Kernel | 2026-04-16 | N/A |
| Linux bdash game has a buffer overflow that allows local users to gain root access. | ||||
| CVE-1999-1326 | 1 Washington University | 1 Wu-ftpd | 2026-04-16 | N/A |
| wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote attackers to read arbitrary files. | ||||
| CVE-2006-2122 | 1 Coolmenus | 1 Coolmenus | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in index.php in CoolMenus allows remote attackers to execute arbitrary code via a URL in the page parameter. NOTE: the original report for this issue is probably erroneous, since CoolMenus does not appear to be written in PHP. | ||||
| CVE-2006-2124 | 1 Turnkey Solutions | 1 Sunshop Shopping Cart | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in SunShop 3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) prevaction, (2) previd, (3) prevstart, (4) itemid, (5) id, and (6) action parameters in index.php. | ||||
| CVE-2006-2128 | 1 Deltascripts | 1 Pro Publish | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) email and (2) password parameter to (a) admin/login.php, (3) find_str parameter to (b) search.php, or (4) artid parameter to (c) art.php, or (5) catid parameter to (d) cat.php. | ||||
| CVE-1999-0340 | 1 Slackware | 1 Slackware Linux | 2026-04-16 | N/A |
| Buffer overflow in Linux Slackware crond program allows local users to gain root access. | ||||
| CVE-2006-2131 | 1 Advanced Poll | 1 Advanced Poll | 2026-04-16 | N/A |
| include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify the IP address of a client, which makes it easier for remote attackers to spoof the source IP and bypass voting restrictions. | ||||
| CVE-1999-0343 | 1 Palace | 1 Palace Client | 2026-04-16 | N/A |
| A malicious Palace server can force a client to execute arbitrary programs. | ||||
| CVE-2006-2132 | 1 Duware | 1 Duclassified | 2026-04-16 | N/A |
| SQL injection vulnerability in detail.asp in DUclassified allows remote attackers to execute arbitrary SQL commands via the iPro parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | ||||
| CVE-1999-1327 | 1 Redhat | 1 Linux | 2026-04-16 | N/A |
| Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable. | ||||
| CVE-2006-2133 | 1 Boonex | 1 Barracuda | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in BoonEx Barracuda 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) link_dir_target and (2) link_id_target parameter, possibly involving the link_edit functionality. | ||||
| CVE-2006-2134 | 1 Phpbb Group | 1 Phpbb | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in /includes/kb_constants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. | ||||
| CVE-2006-2135 | 1 Ruperts News | 1 Ruperts News | 2026-04-16 | N/A |
| SQL injection vulnerability in login.php in Ruperts News allows remote attackers to execute arbitrary SQL commands via the username parameter. | ||||
| CVE-1999-0345 | 4 Freebsd, Ibm, Sco and 1 more | 7 Freebsd, Aix, Sng and 4 more | 2026-04-16 | N/A |
| Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | ||||
| CVE-2006-2136 | 1 Aznews | 1 Aznews | 2026-04-16 | N/A |
| SQL injection vulnerability in news.php in AZNEWS allows remote attackers to execute arbitrary SQL commands via the ID parameter. | ||||
| CVE-1999-0346 | 1 Php | 1 Php Fi | 2026-04-16 | N/A |
| CGI PHP mlog script allows an attacker to read any file on the target server. | ||||
| CVE-1999-1328 | 1 Redhat | 1 Linux | 2026-04-16 | N/A |
| linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack. | ||||