Export limit exceeded: 345051 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (345051 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0517 | 2 Hp, Sun | 2 Hp-ux, Sunos | 2026-04-16 | N/A |
| An SNMP community name is the default (e.g. public), null, or missing. | ||||
| CVE-2006-3512 | 1 Microsoft | 2 Internet Explorer, Windows Xp | 2026-04-16 | N/A |
| Internet Explorer 6 on Windows XP allows remote attackers to cause a denial of service (crash) by setting the Enabled property of a DXTFilter ActiveX object to true, which triggers a null dereference. | ||||
| CVE-1999-0518 | 1 Microsoft | 1 Windows 95 | 2026-04-16 | N/A |
| A NETBIOS/SMB share password is guessable. | ||||
| CVE-2006-3513 | 1 Microsoft | 2 Ie, Internet Explorer | 2026-04-16 | N/A |
| danim.dll in Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) by accessing the Data property of a DirectAnimation DAUserData object before it is initialized, which triggers a NULL pointer dereference. | ||||
| CVE-2006-3514 | 1 Phpblogger | 1 Php-blogger | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in admin/actions.php in PHP-Blogger 2.2.5, and possibly earlier versions, allow remote attackers to execute arbitrary web script or HTML via the (1) name, (2) title, (3) news, (4) description, and (5) sitename parameters. | ||||
| CVE-2006-3515 | 1 Myiosoft.com | 1 Ajaxportal | 2026-04-16 | N/A |
| SQL injection vulnerability in the loginADP function in ajaxp.php in AjaxPortal 3.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password parameters. | ||||
| CVE-2006-3516 | 1 Freehost | 1 Freehost | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in FreeHost allow remote attackers to execute arbitrary SQL commands via (1) readme parameter to FreeHost/misc.php or (2) index parameter to FreeHost/news.php. | ||||
| CVE-2006-3517 | 1 Rwscripts.com | 1 Rw Download | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in stats.php in RW::Download, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter. | ||||
| CVE-1999-0519 | 1 Microsoft | 4 Outlook, Windows 2000, Windows 95 and 1 more | 2026-04-16 | N/A |
| A NETBIOS/SMB share password is the default, null, or missing. | ||||
| CVE-1999-0861 | 1 Microsoft | 4 Commercial Internet System, Internet Information Server, Site Server and 1 more | 2026-04-16 | N/A |
| Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext. | ||||
| CVE-2001-0013 | 2 Isc, Redhat | 2 Bind, Linux | 2026-04-16 | N/A |
| Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. | ||||
| CVE-2001-0067 | 1 Judd Montgomery | 1 Jpilot | 2026-04-16 | N/A |
| The installation of J-Pilot creates the .jpilot directory with the user's umask, which could allow local attackers to read other users' PalmOS backup information if their umasks are not securely set. | ||||
| CVE-2001-0104 | 1 Alt-n | 1 Mdaemon | 2026-04-16 | N/A |
| MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pressing the Cancel button at the password prompt, then pressing the enter key. | ||||
| CVE-2006-3518 | 1 Webvizyon.net | 1 Webvizyon Portal | 2026-04-16 | N/A |
| SQL injection vulnerability in SayfalaAltList.asp in Webvizyon Portal 2006 allows remote attackers to execute arbitrary SQL commands via the ID parameter. | ||||
| CVE-2006-3519 | 1 Native Solutions | 1 The Banner Engine | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in The Banner Engine (tbe) 4.0 allow remote attackers to execute arbitrary web script or HTML via the (1) text parameter in a search action to (a) top.php, and the (2) adminpass or (3) adminlogin parameter to (b) signup.php. | ||||
| CVE-2001-0014 | 1 Microsoft | 1 Windows 2000 | 2026-04-16 | N/A |
| Remote Data Protocol (RDP) in Windows 2000 Terminal Service does not properly handle certain malformed packets, which allows remote attackers to cause a denial of service, aka the "Invalid RDP Data" vulnerability. | ||||
| CVE-2006-3521 | 1 Simian Systems Inc | 1 Siteforge Collaborative Development Platform | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in index/siteforge-bugs-action/proj.siteforge in SiteForge Collaborative Development Platform 1.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) _status, (2) _extra1, (3) _extra2, or (4) _extra3 parameters. | ||||
| CVE-1999-0520 | 2026-04-16 | N/A | ||
| A system-critical NETBIOS/SMB share has inappropriate access control. | ||||
| CVE-2006-3522 | 1 Clearswift | 1 Mimesweeper For Web | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back in an error message when trying to access a blocked web site. | ||||
| CVE-2006-3523 | 1 Clearswift | 1 Mimesweeper For Web | 2026-04-16 | N/A |
| Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to cause a denial of service (crash) via an encrypted archived .RAR file, which triggers a scan error and causes the Web Policy Engine service to terminate. | ||||