Export limit exceeded: 359386 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359386 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0540 | 1 Macromedia | 1 Jrun | 2026-04-16 | N/A |
| JSP sample files in Allaire JRun 2.3.x allow remote attackers to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information. | ||||
| CVE-2006-0202 | 1 Paypal | 1 Php Toolkit | 2026-04-16 | N/A |
| Dave Nielsen and Patrick Breitenbach PayPal Web Services (aka PHP Toolkit) 0.50 and possibly earlier has (1) world-readable permissions for ipn/logs/ipn_success.txt, which allows local users to view sensitive information (payment data), and (2) world-writable permissions for ipn/logs, which allows local users to delete or replace payment data. | ||||
| CVE-2000-0541 | 1 Panda | 1 Panda Antivirus | 2026-04-16 | N/A |
| The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command. | ||||
| CVE-2000-0543 | 1 Pgp | 1 Certificate Server | 2026-04-16 | N/A |
| The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000. | ||||
| CVE-2000-0545 | 1 Sgi | 1 Mailx | 2026-04-16 | N/A |
| Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter. | ||||
| CVE-2006-0205 | 1 Wordcircle | 1 Wordcircle | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in Wordcircle 2.17 allow remote attackers to (1) execute arbitrary SQL commands and bypass authentication via the password field in the login action to index.php (involving v_login.php and s_user.php) and (2) have other unknown impact via certain other fields in unspecified scripts. | ||||
| CVE-2000-0550 | 2 Cygnus, Mit | 4 Cygnus Network Security, Kerbnet, Kerberos and 1 more | 2026-04-16 | N/A |
| Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service. | ||||
| CVE-2000-0551 | 1 Danware Data | 1 Netop | 2026-04-16 | N/A |
| The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files. | ||||
| CVE-2000-0552 | 1 Icq | 1 Icq | 2026-04-16 | 5.5 Medium |
| ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information. | ||||
| CVE-2000-0553 | 1 Darren Reed | 1 Ipfilter | 2026-04-16 | N/A |
| Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions. | ||||
| CVE-2000-0554 | 1 Lilikoi | 1 Ceilidh | 2026-04-16 | N/A |
| Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field. | ||||
| CVE-2000-0562 | 1 Iss | 2 Blackice Agent, Blackice Defender | 2026-04-16 | N/A |
| BlackIce Defender 2.1 and earlier, and BlackIce Pro 2.0.23 and earlier, do not properly block Back Orifice traffic when the security setting is Nervous or lower. | ||||
| CVE-2000-0564 | 1 Mirabilis | 1 Icq | 2026-04-16 | N/A |
| The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter. | ||||
| CVE-2006-0209 | 1 Tanklogger | 1 Tanklogger | 2026-04-16 | N/A |
| SQL injection vulnerability in general_functions.php in TankLogger 2.4 allows remote attackers to execute arbitrary SQL commands via the (1) livestock_id parameter to showInfo.php and (2) tank_id parameter, possibly to livestock.php. | ||||
| CVE-2000-0565 | 1 Mindstorm | 1 Smartftp Daemon | 2026-04-16 | N/A |
| SmartFTP Daemon 0.2 allows a local user to access arbitrary files by uploading and specifying an alternate user configuration file via a .. (dot dot) attack. | ||||
| CVE-2006-0214 | 1 Indexcor | 1 Ezdatabase | 2026-04-16 | N/A |
| Eval injection vulnerability in ezDatabase 2.0 and earlier allows remote attackers to execute arbitrary PHP code via the db_id parameter to visitorupload.php, as demonstrated using phpinfo and include function calls. | ||||
| CVE-2000-0576 | 1 Oracle | 1 Web Listener | 2026-04-16 | N/A |
| Oracle Web Listener for AIX versions 4.0.7.0.0 and 4.0.8.1.0 allows remote attackers to cause a denial of service via a malformed URL. | ||||
| CVE-2000-0578 | 1 Sgi | 1 Mipspro Compilers | 2026-04-16 | N/A |
| SGI MIPSPro compilers C, C++, F77 and F90 generate temporary files in /tmp with predictable file names, which could allow local users to insert malicious contents into these files as they are being compiled by another user. | ||||
| CVE-2000-0579 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| IRIX crontab creates temporary files with predictable file names and with the umask of the user, which could allow local users to modify another user's crontab file as it is being edited. | ||||
| CVE-2000-0582 | 1 Checkpoint | 1 Firewall-1 | 2026-04-16 | N/A |
| Check Point FireWall-1 4.0 and 4.1 allows remote attackers to cause a denial of service by sending a stream of invalid commands (such as binary zeros) to the SMTP Security Server proxy. | ||||