Total
250752 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-1166 | 1 Twig Development Team | 1 Twig | 2023-12-10 | 7.5 HIGH | N/A |
| Twig webmail system does not properly set the "vhosts" variable if it is not configured on the site, which allows remote attackers to insert arbitrary PHP (PHP3) code by specifying an alternate vhosts as an argument to the index.php3 program. | |||||
| CVE-2002-0295 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 4.6 MEDIUM | N/A |
| Alcatel OmniPCX 4400 installs files with world-writable permissions, which allows local users to reconfigure the system and possibly gain privileges. | |||||
| CVE-1999-1305 | 1 Sco | 5 Open Desktop, Open Desktop Lite, Openserver Enterprise System and 2 more | 2023-12-10 | 7.2 HIGH | N/A |
| Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access. | |||||
| CVE-1999-0996 | 1 Infoseek | 1 Ultraseek Server | 2023-12-10 | 7.5 HIGH | N/A |
| Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. | |||||
| CVE-2001-0801 | 1 Sgi | 1 Irix | 2023-12-10 | 7.2 HIGH | N/A |
| lpstat in IRIX 6.5.13f and earlier allows local users to gain root privileges by specifying a Trojan Horse nettype shared library. | |||||
| CVE-1999-0106 | 2023-12-10 | 2.1 LOW | N/A | ||
| Finger redirection allows finger bombs. | |||||
| CVE-1999-0146 | 1 Ncsa | 2 Campas, Servers | 2023-12-10 | 7.5 HIGH | N/A |
| The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file. | |||||
| CVE-2004-1807 | 1 Dogpatch Software | 1 Cfwebstore | 2023-12-10 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in index.cfm in CFWebstore 5.0 allows remote attackers to inject arbitrary web script or HTML via the URL. | |||||
| CVE-1999-0200 | 2023-12-10 | 10.0 HIGH | N/A | ||
| Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password. | |||||
| CVE-2000-0099 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
| Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument. | |||||
| CVE-2004-2085 | 1 Brad Fears | 1 Phpcodecabinet | 2023-12-10 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Brad Fears phpCodeCabinet 0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via multiple parameters, including (1) the sid parameter to comments.php, (2) the cid, cf, or rfd parameters to category.php, or the cid parameter to (3) input.php, (4) browse.php, (5) themes/facade/header.php, or (6) themes/phpcc/header.php. | |||||
| CVE-2002-0272 | 1 Mpg321 | 1 Mpg321 | 2023-12-10 | 10.0 HIGH | N/A |
| Buffer overflows in mpg321 before 0.2.9 allows local and possibly remote attackers to execute arbitrary code via a long URL to (1) a command line option, (2) an HTTP request, or (3) an FTP request. | |||||
| CVE-1999-1334 | 1 Elm Development Group | 1 Elm | 2023-12-10 | 7.5 HIGH | N/A |
| Multiple buffer overflows in filter command in Elm 2.4 allows attackers to execute arbitrary commands via (1) long From: headers, (2) long Reply-To: headers, or (3) via a long -f (filterfile) command line argument. | |||||
| CVE-1999-0083 | 1 Sgi | 1 Irix | 2023-12-10 | 5.0 MEDIUM | N/A |
| getcwd() file descriptor leak in FTP. | |||||
| CVE-2004-0214 | 1 Microsoft | 5 Internet Explorer, Windows 2000, Windows 98 and 2 more | 2023-12-10 | 10.0 HIGH | N/A |
| Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba. | |||||
| CVE-2002-0960 | 1 Voxel | 1 Cbms | 2023-12-10 | 7.5 HIGH | N/A |
| Multiple cross-site scripting vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier allows remote attackers to execute arbitrary script as other CBMS users. | |||||
| CVE-2004-2036 | 1 Jportal | 1 Jportal Web Portal | 2023-12-10 | 7.5 HIGH | N/A |
| SQL injection vulnerability in the art_print function in print.inc.php in unknown versions of jPortal before 2.3.1 allows remote attackers to inject arbitrary SQL commands via the id parameter. | |||||
| CVE-2004-0011 | 1 Debian | 1 Fsp | 2023-12-10 | 7.5 HIGH | N/A |
| Buffer overflow in fsp before 2.81.b18 allows remote users to execute arbitrary code. | |||||
| CVE-2002-0408 | 1 Lotus | 1 Domino | 2023-12-10 | 5.0 MEDIUM | N/A |
| htcgibin.exe in Lotus Domino server 5.0.9a and earlier, when configured with the NoBanner setting, allows remote attackers to determine the version number of the server via a request that generates an HTTP 500 error code, which leaks the version in a hard-coded error message. | |||||
| CVE-2002-0968 | 1 Analogx | 1 Simpleserver Www | 2023-12-10 | 7.5 HIGH | N/A |
| Buffer overflow in AnalogX SimpleServer:WWW 1.16 and earlier allows remote attackers to cause a denial of service (crash) and execute code via a long HTTP request method name. | |||||