Export limit exceeded: 29925 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29925 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-5000 | 2 Ipswitch, Progress | 2 Ws Ftp Server, Ws Ftp Server | 2026-04-16 | N/A |
| Multiple buffer overflows in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, have unknown impact and remote authenticated attack vectors via the (1) XCRC, (2) XMD5, and (3) XSHA1 commands. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue. | ||||
| CVE-1999-0294 | 1 Microsoft | 1 Wins | 2026-04-16 | N/A |
| All records in a WINS database can be deleted through SNMP for a denial of service. | ||||
| CVE-1999-0506 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2026-04-16 | N/A |
| A Windows NT domain user or administrator account has a default, null, blank, or missing password. | ||||
| CVE-2003-0900 | 1 Larry Wall | 1 Perl | 2026-04-16 | N/A |
| Perl 5.8.1 on Fedora Core does not properly initialize the random number generator when forking, which makes it easier for attackers to predict random numbers. | ||||
| CVE-2006-0040 | 1 Gnome | 1 Evolution | 2026-04-16 | N/A |
| GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a text e-mail with a large number of URLs, possibly due to unknown problems in gtkhtml. | ||||
| CVE-2006-1214 | 1 Unreal | 1 Unrealircd | 2026-04-16 | N/A |
| UnrealIRCd 3.2.3 allows remote attackers to cause an unspecified denial of service by causing a linked server to send malformed TKL Q:Line commands, as demonstrated by "TKL - q\x08Q *\x08PoC." | ||||
| CVE-2002-1364 | 1 Ehud Gavron | 1 Tracesroute | 2026-04-16 | N/A |
| Buffer overflow in the get_origin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses. | ||||
| CVE-2004-0254 | 1 Crosscom Olicom | 1 Discuz | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Discuz! Board 2.x and 3.x allows remote attackers to execute arbitrary script as other users via an img tag. | ||||
| CVE-1999-0958 | 1 Todd Miller | 1 Sudo | 2026-04-16 | N/A |
| sudo 1.5.x allows local users to execute arbitrary commands via a .. (dot dot) attack. | ||||
| CVE-1999-1183 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| System Manager sysmgr GUI in SGI IRIX 6.4 and 6.3 allows remote attackers to execute commands by providing a trojan horse (1) runtask or (2) runexec descriptor file, which is used to execute a System Manager Task when the user's Mailcap entry supports the x-sgi-task or x-sgi-exec type. | ||||
| CVE-2004-0743 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2026-04-16 | N/A |
| Safari in Mac OS X before 10.3.5, after sending form data using the POST method, may re-send the data to a GET method URL if that URL is redirected after the POST data and the user uses the forward or backward buttons, which may cause an information leak. | ||||
| CVE-2004-1466 | 1 Gallery Project | 1 Gallery | 2026-04-16 | N/A |
| The set_time_limit function in Gallery before 1.4.4_p2 deletes non-image files in a temporary directory every 30 seconds after they have been uploaded using save_photos.php, which allows remote attackers to upload and execute execute arbitrary scripts before they are deleted, if the temporary directory is under the web root. | ||||
| CVE-2005-1548 | 1 Advanced Guestbook | 1 Advanced Guestbook | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Advanced Guestbook 2.3.1 allows remote attackers to execute arbitrary SQL commands via the entry parameter. | ||||
| CVE-2005-3679 | 1 Activecampaign | 1 1-2-all Broadcast Email | 2026-04-16 | N/A |
| SQL injection vulnerability in admin/index.php in ActiveCampaign 1-2-All Broadcast Email allows remote attackers to execute arbitrary SQL commands and bypass authentication via the username field in the admin control panel. | ||||
| CVE-2006-1257 | 1 Microsoft | 1 Commerce Server | 2026-04-16 | N/A |
| The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypass authentication by logging in to authfiles/login.asp with a valid username and any password, then going to the main site twice. | ||||
| CVE-1999-0280 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Remote command execution in Microsoft Internet Explorer using .lnk and .url files. | ||||
| CVE-1999-0281 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2026-04-16 | N/A |
| Denial of service in IIS using long URLs. | ||||
| CVE-1999-0292 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| Denial of service through Winpopup using large user names. | ||||
| CVE-1999-0518 | 1 Microsoft | 1 Windows 95 | 2026-04-16 | N/A |
| A NETBIOS/SMB share password is guessable. | ||||
| CVE-1999-1068 | 1 Oracle | 1 Http Server | 2026-04-16 | N/A |
| Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request. | ||||