Export limit exceeded: 29893 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29893 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0112 | 1 Debian | 1 Debian Linux | 2026-04-16 | N/A |
| The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation. | ||||
| CVE-2000-0123 | 1 Filemaker | 1 Filemaker | 2026-04-16 | N/A |
| The shopping cart application provided with Filemaker allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0014 | 1 Michael Lamont | 1 Savant Webserver | 2026-04-16 | N/A |
| Denial of service in Savant web server via a null character in the requested URL. | ||||
| CVE-2000-0082 | 1 Microsoft | 1 Webtv | 2026-04-16 | N/A |
| WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML. | ||||
| CVE-2005-0444 | 1 Vmware | 1 Workstation | 2026-04-16 | N/A |
| VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the rrdharan world-writable temporary directory, which allows local users to execute arbitrary code. | ||||
| CVE-2004-2406 | 1 Phpgroupware | 1 Phpgroupware | 2026-04-16 | N/A |
| Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact. | ||||
| CVE-2005-1633 | 1 Jgs-xa | 1 Jgs-portal | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) anzahl_beitraege parameter to jgs_portal.php, 2) year parameter to (jgs_portal_statistik.php, 3) year parameter to (jgs_portal_beitraggraf.php, 4) tag parameter to (jgs_portal_viewsgraf.php, 5) year parameter to (jgs_portal_themengraf.php, 6) year parameter to (jgs_portal_mitgraf.php, 7) id parameter to jgs_portal_sponsor.php, or (8) the Accept-Language header to jgs_portal_log.php. | ||||
| CVE-2006-1489 | 1 Fusionzone | 1 Couponzone | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) companyid, (2) scat, and (3) coid parameters. | ||||
| CVE-2006-1431 | 1 Fusionzone | 1 Couponzone | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in local.cfm in fusionZONE couponZONE 4.2 allows remote attackers to inject arbitrary web script or HTML via URL-encoded (1) srchfor and (2) srchby parameters. | ||||
| CVE-2000-0084 | 1 Globalscape | 1 Cuteftp | 2026-04-16 | N/A |
| CuteFTP uses weak encryption to store password information in its tree.dat file. | ||||
| CVE-2006-1497 | 1 Vihor | 1 Vihordesign | 2026-04-16 | N/A |
| Directory traversal vulnerability in index.php in ViHor Design allows remote attackers to read arbitrary files via the page parameter. | ||||
| CVE-2004-2407 | 1 Phpgroupware | 1 Phpgroupware | 2026-04-16 | N/A |
| Unknown vulnerability in phpGroupWare before 0.9.14.002 has unknown attack vectors and impact, related to a "security hole" in the Setup/Config functionality. | ||||
| CVE-2000-0029 | 1 Sco | 1 Unixware | 2026-04-16 | N/A |
| UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. | ||||
| CVE-2000-0093 | 1 Redhat | 1 Linux | 2026-04-16 | N/A |
| An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5. | ||||
| CVE-2000-0135 | 1 Atretail | 1 Atretail | 2026-04-16 | N/A |
| The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2004-2408 | 1 Vserver | 1 Linux-vserver | 2026-04-16 | N/A |
| Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions across all virtual and host servers, which allows local users with the ability to set permissions in /proc to obtain system information or cause a denial of service on other virtual servers or the host server. | ||||
| CVE-1999-1097 | 1 Microsoft | 1 Netmeeting | 2026-04-16 | N/A |
| Microsoft NetMeeting 2.1 allows one client to read the contents of another client's clipboard via a CTRL-C in the chat box when the box is empty. | ||||
| CVE-1999-0749 | 1 Microsoft | 2 Windows 95, Windows 98 | 2026-04-16 | N/A |
| Buffer overflow in Microsoft Telnet client in Windows 95 and Windows 98 via a malformed Telnet argument. | ||||
| CVE-2006-1804 | 1 Phpmyadmin | 1 Phpmyadmin | 2026-04-16 | N/A |
| SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to execute arbitrary SQL commands via the sql_query parameter. | ||||
| CVE-2004-2409 | 1 Samhain Labs | 1 Samhain | 2026-04-16 | N/A |
| Buffer overflow in the sh_hash_compdata function for Samhain 1.8.9 through 2.0.1, when running in update mode ("-t update"), might allow attackers to execute arbitrary code. | ||||