Export limit exceeded: 29894 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29894 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-4920 | 1 Siteatschool | 1 Siteatschool | 2026-04-16 | N/A |
| Multiple PHP remote file inclusion vulnerabilities in Site@School (S@S) 2.4.02 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter to (1) starnet/modules/sn_allbum/slideshow.php, and (2) starnet/themes/editable/main.inc.php. | ||||
| CVE-1999-0121 | 2026-04-16 | N/A | ||
| Buffer overflow in dtaction command gives root access. | ||||
| CVE-2006-4921 | 1 Siteatschool | 1 Siteatschool | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in Site@School (S@S) 2.4.03 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter to starnet/modules/include/include.php. NOTE: some of these details are obtained from third party information. | ||||
| CVE-2005-3499 | 1 Frisk Software | 1 F-prot Antivirus | 2026-04-16 | N/A |
| Frisk F-Prot Antivirus allows remote attackers to bypass protection via a ZIP file with a version header greater than 15, which prevents F-Prot from decompressing and analyzing the file. | ||||
| CVE-2006-4923 | 1 Esyndicat Portal System | 1 Esyndicat Portal System | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in search.php in eSyndiCat Portal System allows remote attackers to inject arbitrary web script or HTML via the what parameter. | ||||
| CVE-1999-0140 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| Denial of service in RAS/PPTP on NT systems. | ||||
| CVE-2005-3500 | 1 Clam Anti-virus | 1 Clamav | 2026-04-16 | N/A |
| The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block. | ||||
| CVE-1999-0150 | 1 Gnu | 1 Fingerd | 2026-04-16 | N/A |
| The Perl fingerd program allows arbitrary command execution from remote users. | ||||
| CVE-1999-0155 | 1 Aladdin Enterprises | 1 Ghostscript | 2026-04-16 | N/A |
| The ghostscript command with the -dSAFER option allows remote attackers to execute commands. | ||||
| CVE-1999-0156 | 1 Washington University | 1 Wu-ftpd | 2026-04-16 | N/A |
| wu-ftpd FTP daemon allows any user and password combination. | ||||
| CVE-1999-0158 | 1 Cisco | 1 Pix Firewall Software | 2026-04-16 | N/A |
| Cisco PIX firewall manager (PFM) on Windows NT allows attackers to connect to port 8080 on the PFM server and retrieve any file whose name and location is known. | ||||
| CVE-1999-0161 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering. | ||||
| CVE-2005-3502 | 1 Cerberus | 1 Cerberus Helpdesk | 2026-04-16 | N/A |
| attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter. | ||||
| CVE-2006-4937 | 1 Moodle | 1 Moodle | 2026-04-16 | N/A |
| lib/setup.php in Moodle before 1.6.2 sets the error reporting level to 7 to display E_WARNING messages to users even if debugging is disabled, which might allow remote authenticated users to obtain sensitive information by triggering the messages. | ||||
| CVE-1999-0169 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows attackers to read and write any file on the system by specifying a false UID. | ||||
| CVE-2005-3504 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly execute arbitrary code. | ||||
| CVE-2006-4938 | 1 Moodle | 1 Moodle | 2026-04-16 | N/A |
| help.php in Moodle before 1.6.2 does not check the existence of certain help files before including them, which might allow remote authenticated users to obtain the path in an error message. | ||||
| CVE-1999-0188 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| The passwd command in Solaris can be subjected to a denial of service. | ||||
| CVE-1999-0180 | 2026-04-16 | N/A | ||
| in.rshd allows users to login with a NULL username and execute commands. | ||||
| CVE-2005-3505 | 1 Cpanel | 1 Cpanel | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in the Entropy Chat script in cPanel 10.2.0-R82 and 10.6.0-R137 allows remote attackers to inject arbitrary web script or HTML via a chat message containing Javascript in style attributes in tags such as <b>, which are processed by Internet Explorer. | ||||