Export limit exceeded: 345182 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (345182 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0416 | 1 Cisco | 1 Cisco 7xx Routers | 2026-04-16 | N/A |
| Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port. | ||||
| CVE-2006-3363 | 1 Xoops | 1 Xoops Glossaire Module | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in index.php in the Glossaire module 1.7 for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the pa parameter. | ||||
| CVE-2006-3365 | 1 V3 Chat | 1 V3 Chat | 2026-04-16 | N/A |
| V3 Chat allows remote attackers to obtain the installation path via (1) an invalid id parameter to mail/index.php or (2) membername parameter to messenger/online.php, which displays the path in an error page due to an incorrect SQL statement. | ||||
| CVE-1999-0417 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| 64 bit Solaris 7 procfs allows local users to perform a denial of service. | ||||
| CVE-1999-0418 | 2026-04-16 | N/A | ||
| Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection. | ||||
| CVE-2006-3366 | 1 V3 Chat | 1 V3 Chat | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in V3 Chat allow remote attackers to inject arbitrary web script or HTML via crafted HTML tags, as demonstrated by the IMG tag, in the (1) id parameter in (a) mail/index.php and (b) mail/reply.php; (2) login_id parameter in (c) members/is_online.php; (3) site_id parameter in (d) messenger/online.php, (e) messenger/search.php, and (f) messenger/profile.php; (4) contact_name parameter in messenger/search.php; (5) membername parameter in (g) messenger/profileview.php; (6) unspecified parameters used when "editing a profile"; and (7) cust_name parameter in (h) messenger/expire.php. NOTE: The vendor disputes the vectors involving files in the messenger directory, stating "... the referenced folder 'messenger' was never available to the general public...". | ||||
| CVE-2006-3367 | 1 Mp3netbox | 1 Mp3netbox | 2026-04-16 | N/A |
| Mp3 JudeBox Server (Mp3NetBox) Beta 1 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information, including the database configuration. | ||||
| CVE-1999-0420 | 1 Netbsd | 1 Umapfs | 2026-04-16 | N/A |
| umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program. | ||||
| CVE-2005-1512 | 1 Pwsphp | 1 Pwsphp | 2026-04-16 | N/A |
| The Admin panel in PwsPHP 1.2.2 does not properly verify uploaded picture files, which allows remote attackers to upload and possibly execute arbitrary files. | ||||
| CVE-2006-3368 | 1 Efone | 1 Efone | 2026-04-16 | N/A |
| Efone 20000723 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information. | ||||
| CVE-2006-3369 | 1 Iduprey | 1 Kamikaze-qscm | 2026-04-16 | N/A |
| Kamikaze-QSCM 0.1 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information, including the database configuration. | ||||
| CVE-1999-0421 | 1 Slackware | 1 Slackware Linux | 2026-04-16 | N/A |
| During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a password. | ||||
| CVE-1999-1510 | 1 Bisonware | 1 Bisonware Ftp Server | 2026-04-16 | N/A |
| Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands. | ||||
| CVE-2000-0072 | 1 Computer Power Solutions | 1 Visual Casel | 2026-04-16 | N/A |
| Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges. | ||||
| CVE-1999-0422 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set. | ||||
| CVE-2006-3370 | 1 Bb-news | 1 Blueboy | 2026-04-16 | N/A |
| Blueboy 1.0.3 stores bb_news_config.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information, including the database configuration. | ||||
| CVE-1999-0423 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges. | ||||
| CVE-2000-0781 | 1 Ca | 1 Arcserve Backup | 2026-04-16 | N/A |
| uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file, which allows local users to execute arbitrary commands by modifying the temporary file before it is moved. | ||||
| CVE-2006-3371 | 1 Eupla | 1 Foros | 2026-04-16 | N/A |
| Eupla Foros 1.0 stores the inc/config.inc file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information, including the database configuration. | ||||
| CVE-2006-3372 | 1 Apple | 1 Safari | 2026-04-16 | N/A |
| Apple Safari 2.0.4/419.3 allows remote attackers to cause a denial of service (application crash) via a DHTML setAttributeNode function call with zero arguments, which triggers a null dereference. | ||||