Export limit exceeded: 29894 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29894 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-1455 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2026-04-16 | N/A |
| QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service (crash and connection interruption) via a QuickTime movie with a missing track, which triggers a null dereference. | ||||
| CVE-2000-0077 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands. | ||||
| CVE-2006-1800 | 1 Simplemedia | 1 Simplebbs | 2026-04-16 | N/A |
| Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated by by injecting the code into the gl_session cookie of users.php, which is stored in error.log. | ||||
| CVE-2000-0014 | 1 Michael Lamont | 1 Savant Webserver | 2026-04-16 | N/A |
| Denial of service in Savant web server via a null character in the requested URL. | ||||
| CVE-2000-0082 | 1 Microsoft | 1 Webtv | 2026-04-16 | N/A |
| WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML. | ||||
| CVE-2002-1562 | 1 Acme Labs | 1 Thttpd | 2026-04-16 | N/A |
| Directory traversal vulnerability in thttpd, when using virtual hosting, allows remote attackers to read arbitrary files via .. (dot dot) sequences in the Host: header. | ||||
| CVE-2006-2616 | 1 Alstrasoft | 1 Webhost Directory | 2026-04-16 | N/A |
| SQL injection vulnerability in the search script in (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote attackers to execute arbitrary SQL commands via the uri parameter. | ||||
| CVE-2000-0062 | 1 Zope | 1 Zope | 2026-04-16 | N/A |
| The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities. | ||||
| CVE-2006-1282 | 1 Mybulletinboard | 1 Mybulletinboard | 2026-04-16 | N/A |
| CRLF injection vulnerability in inc/function.php in MyBulletinBoard (MyBB) 1.04 allows remote attackers to conduct cross-site scripting (XSS), poison caches, or hijack pages via CRLF (%0A%0D) sequences in the Referrer HTTP header field, possibly when redirecting to other web pages. | ||||
| CVE-2000-0065 | 1 Avtronics | 1 Inetserv | 2026-04-16 | N/A |
| Buffer overflow in InetServ 3.0 allows remote attackers to execute commands via a long GET request. | ||||
| CVE-2000-0084 | 1 Globalscape | 1 Cuteftp | 2026-04-16 | N/A |
| CuteFTP uses weak encryption to store password information in its tree.dat file. | ||||
| CVE-2000-0632 | 1 Lsoft | 1 Listserv | 2026-04-16 | N/A |
| Buffer overflow in the web archive component of L-Soft Listserv 1.8d and earlier allows remote attackers to execute arbitrary commands via a long query string. | ||||
| CVE-2000-0018 | 1 Windowmaker | 1 Wmmon | 2026-04-16 | N/A |
| wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file. | ||||
| CVE-2004-2200 | 1 Duware | 1 Duforum | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in DUware DUforum 3.0 through 3.1 allows remote attackers to inject arbitrary web script or HTML via via the message text. | ||||
| CVE-2000-0029 | 1 Sco | 1 Unixware | 2026-04-16 | N/A |
| UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. | ||||
| CVE-2000-0093 | 1 Redhat | 1 Linux | 2026-04-16 | N/A |
| An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5. | ||||
| CVE-2005-0246 | 2 Postgresql, Redhat | 2 Postgresql, Enterprise Linux | 2026-04-16 | N/A |
| The intagg contrib module for PostgreSQL 8.0.0 and earlier allows attackers to cause a denial of service (crash) via crafted arrays. | ||||
| CVE-2000-0030 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database. | ||||
| CVE-2006-1974 | 1 Mybulletinboard | 1 Mybulletinboard | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in MyBB (MyBulletinBoard) before 1.04 allows remote attackers to execute arbitrary SQL commands via the referrer parameter. | ||||
| CVE-2004-2201 | 1 Duware | 1 Duforum | 2026-04-16 | N/A |
| SQL injection vulnerability in DUware DUforum 3.0 through 3.1 allows remote attackers to execute arbitrary SQL commands via the FOR_ID parameter in messages.asp, (2) MSG_ID parameter in messageDetail.asp, or (3) password parameter in the login form. | ||||