Export limit exceeded: 363504 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (363504 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-1008 2 Freebsd, Mandrakesoft 2 Freebsd, Mandrake Linux 2026-04-16 N/A
xsoldier program allows local users to gain root access via a long argument.
CVE-2006-0110 1 Javier Suarez Sanz 1 Foro Domus 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary web script via the email parameter.
CVE-2006-0108 1 Idea Development Id Oy 1 Timecan Cms 2026-04-16 N/A
SQL injection vulnerability in mcl_login.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the original source, it cannot be determined if this is the same issue as identified by CVE-2006-0107.
CVE-2002-0240 1 Apache 1 Http Server 2026-04-16 N/A
PHP, when installed with Apache and configured to search for index.php as a default web page, allows remote attackers to obtain the full pathname of the server via the HTTP OPTIONS method, which reveals the pathname in the resulting error message.
CVE-2001-1058 1 Wolfram Research 1 Mathematica 2026-04-16 N/A
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes the name of a host that is allowed to obtain the license.
CVE-1999-1007 1 Vdonet 1 Vdolive Player 2026-04-16 N/A
Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file.
CVE-2005-4629 1 Smbcms 1 Smbcms 2026-04-16 N/A
SQL injection vulnerability in SMBCMS 2.1 allows remote attackers to execute arbitrary SQL commands via unspecified search parameters.
CVE-2005-4601 2 Imagemagick, Redhat 2 Imagemagick, Enterprise Linux 2026-04-16 N/A
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command.
CVE-1999-1006 1 Novell 1 Groupwise 2026-04-16 N/A
Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter.
CVE-2005-3634 1 Sap 1 Sap Web Application Server 2026-04-16 N/A
frameset.htm in the BSP runtime in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to log users out and redirect them to arbitrary web sites via a close command in the sap-sessioncmd parameter and a URL in the sap-exiturl parameter.
CVE-1999-1005 2 Netscape, Novell 2 Enterprise Server, Groupwise 2026-04-16 N/A
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
CVE-2002-0058 2 Microsoft, Sun 4 Virtual Machine, Jdk, Jre and 1 more 2026-04-16 N/A
Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 through 6.1 and 4.79 and earlier, (2) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, and possibly other implementations that use vulnerable versions of SDK or JDK.
CVE-1999-1004 1 Symantec 1 Norton Antivirus 2026-04-16 N/A
Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command.
CVE-2001-1009 2 Fetchmail, Redhat 2 Fetchmail, Linux 2026-04-16 N/A
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.
CVE-2002-0174 1 Sgi 1 Irix 2026-04-16 N/A
nsd on SGI IRIX before 6.5.11 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the nsd.dump file.
CVE-1999-0722 1 Sun 1 Cobalt Raq 2 2026-04-16 N/A
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.
CVE-1999-0727 1 Openbsd 1 Openbsd 2026-04-16 N/A
A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted.
CVE-2001-1015 1 Snes9x.com 1 Snes9x 2026-04-16 N/A
Buffer overflow in Snes9x 1.37, when installed setuid root, allows local users to gain root privileges via a long command line argument.
CVE-2002-0175 1 Avaya 1 Libsafe 2026-04-16 N/A
libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not libsafe.
CVE-1999-0728 1 Microsoft 1 Windows Nt 2026-04-16 N/A
A Windows NT user can disable the keyboard or mouse by directly calling the IOCTLs which control them.