Total
250744 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-0797 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in the MIB parsing component of mibiisa for Solaris 5.6 through 8 allows remote attackers to gain root privileges. | |||||
CVE-2004-1668 | 1 Easyweb | 1 Factory Subjects Module | 2023-12-10 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in index.php in Subjects 2.0 Postnuke module allow remote attackers to execute arbitrary SQL commands via the (1) pageid, (2) subid, or (3) catid parameters. | |||||
CVE-1999-0653 | 2023-12-10 | 10.0 HIGH | N/A | ||
A component service related to NIS+ is running. | |||||
CVE-2003-0932 | 1 Omega-rpg | 1 Omega-rpg | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in omega-rpg 0.90 allows local users to execute arbitrary code via a long (1) command line or (2) environment variable. | |||||
CVE-2004-2056 | 1 Nucleus Group | 1 Nucleus Cms | 2023-12-10 | 7.5 HIGH | N/A |
SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers to execute arbitrary SQL statements via the itemid parameter. | |||||
CVE-2004-1241 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2004. Notes: none | |||||
CVE-1999-0693 | 3 Hp, Ibm, Sco | 3 Hp-ux, Aix, Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges. | |||||
CVE-2004-1651 | 1 Brickhost | 1 Phpscheduleit | 2023-12-10 | 4.3 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in the registration page in phpScheduleIt 1.0.0 RC1 allow remote attackers to inject arbitrary web script or HTML via the (1) Name or (2) Lastname fields during new user registration, or (3) the Schedule Name field. | |||||
CVE-2003-0979 | 1 Freescripts | 1 Visitorbook | 2023-12-10 | 5.0 MEDIUM | N/A |
FreeScripts VisitorBook LE (visitorbook.pl) does not properly escape line breaks in input, which allows remote attackers to (1) use VisitorBook as an open mail relay, when $mailuser is 1, via extra headers in the email field, or (2) cause the guestbook database to be deleted via a large number of line breaks that exceeds the $max_posts variable. | |||||
CVE-2004-2190 | 1 Unzoo | 1 Unzoo | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Unzoo 4.4-2 has unknown impact and attack vectors. | |||||
CVE-1999-1521 | 1 Computalynx | 1 Cmail | 2023-12-10 | 10.0 HIGH | N/A |
Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attacker to execute arbitrary code on the server. | |||||
CVE-2000-0659 | 1 Analogx | 1 Proxy | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long user ID in a SOCKS4 CONNECT request. | |||||
CVE-2000-0346 | 1 Apple | 1 Appleshare | 2023-12-10 | 5.0 MEDIUM | N/A |
AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via an invalid range request to the web server. | |||||
CVE-1999-0788 | 1 Knox Software | 1 Arkeia | 2023-12-10 | 5.0 MEDIUM | N/A |
Arkiea nlservd allows remote attackers to conduct a denial of service. | |||||
CVE-2002-0508 | 1 Wwwisis | 1 Wwwisis | 2023-12-10 | 10.0 HIGH | N/A |
wwwisis 3.45 and earlier allows remote attackers to execute arbitrary commands and read files via the parameters (1) prolog or (2) epilog. | |||||
CVE-2004-0637 | 1 Oracle | 2 Oracle8i, Oracle9i | 2023-12-10 | 6.5 MEDIUM | N/A |
Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible. | |||||
CVE-2001-0420 | 1 Way To The Web | 1 Talkback | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in talkback.cgi program allows remote attackers to read arbitrary files via a .. (dot dot) in the article parameter. | |||||
CVE-2002-1557 | 1 Cisco | 1 Optical Networking Systems Software | 2023-12-10 | 5.0 MEDIUM | N/A |
Cisco ONS15454 and ONS15327 running ONS before 3.4 allows attackers to cause a denial of service (reset to TCC, TCC+, TCCi or XTC) via a malformed HTTP request that does not contain a leading / (slash) character. | |||||
CVE-2001-1523 | 1 Dmozgateway | 1 Dmozgateway | 2023-12-10 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in the DMOZGateway module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the topic parameter. | |||||
CVE-1999-0516 | 2023-12-10 | 7.5 HIGH | N/A | ||
An SNMP community name is guessable. |