Total
29739 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0454 | 2025-04-03 | N/A | ||
| A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso. | ||||
| CVE-1999-0463 | 1 L0pht | 1 L0phtcrack | 2025-04-03 | N/A |
| Remote attackers can perform a denial of service using IRIX fcagent. | ||||
| CVE-2000-0913 | 1 Apache | 1 Http Server | 2025-04-03 | N/A |
| mod_rewrite in Apache 1.3.12 and earlier allows remote attackers to read arbitrary files if a RewriteRule directive is expanded to include a filename whose name contains a regular expression. | ||||
| CVE-2001-0217 | 1 Mnscu Pals | 1 Webpals | 2025-04-03 | N/A |
| Directory traversal vulnerability in PALS Library System pals-cgi program allows remote attackers to read arbitrary files via a .. (dot dot) in the documentName parameter. | ||||
| CVE-2000-0919 | 1 Phpix | 1 Phpix | 2025-04-03 | N/A |
| Directory traversal vulnerability in PHPix Photo Album 1.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0920 | 1 Boa | 1 Boa Webserver | 2025-04-03 | N/A |
| Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack in the GET HTTP request that uses a "%2E" instead of a "." | ||||
| CVE-2001-0219 | 1 Hp | 1 Hp-ux | 2025-04-03 | N/A |
| Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users to cause a denial of service. | ||||
| CVE-2000-0930 | 1 David Harris | 1 Pegasus Mail | 2025-04-03 | N/A |
| Pegasus Mail 3.12 allows remote attackers to read arbitrary files via an embedded URL that calls the mailto: protocol with a -F switch. | ||||
| CVE-2000-0938 | 1 Samba | 1 Samba | 2025-04-03 | N/A |
| Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name, which allows remote attackers to identify valid users on the server. | ||||
| CVE-2005-3735 | 1 Coastal Data Management | 1 E-quick Cart | 2025-04-03 | N/A |
| Multiple SQL injection vulnerabilities in e-Quick Cart allow remote attackers to execute arbitrary SQL commands via the (1) productid parameter in shopaddtocart.asp, (2) strpemail parameter in shopprojectlogin.asp, and (3) id parameter in shoptellafriend.asp. | ||||
| CVE-2002-0433 | 1 Pi3 | 1 Pi3web | 2025-04-03 | N/A |
| Pi3Web 2.0.0 allows remote attackers to view restricted files via an HTTP request containing a "*" (wildcard or asterisk) character. | ||||
| CVE-2003-1293 | 1 Nukedweb | 1 Guestbookhost | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in NukedWeb GuestBookHost allow remote attackers to inject arbitrary web script or HTML via the (1) Name, (2) Email and (3) Message fields when signing the guestbook. | ||||
| CVE-2005-1285 | 1 Woltlab | 1 Burning Board | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the hilight parameter. | ||||
| CVE-1999-0478 | 1 Sendmail | 1 Sendmail | 2025-04-03 | N/A |
| Denial of service in HP-UX sendmail 8.8.6 related to accepting connections. | ||||
| CVE-2005-1293 | 1 Storeportal | 1 Storeportal | 2025-04-03 | N/A |
| Multiple SQL injection vulnerabilities in default.asp in StorePortal 2.63 allow remote attackers to execute arbitrary SQL commands via the (1) language, (2) bpic, (3) idcategory, (4) content, (5) keyword, or (6) idproduct parameter. | ||||
| CVE-2000-0941 | 1 Kootenay Web Inc | 1 Kootenay Web Inc Whois | 2025-04-03 | N/A |
| Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "whois" parameter. | ||||
| CVE-1999-0494 | 1 Wingate | 1 Wingate | 2025-04-03 | N/A |
| Denial of service in WinGate proxy through a buffer overflow in POP3. | ||||
| CVE-2000-0949 | 2 Lbl, Sun | 2 Lbl Traceroute, Sunos | 2025-04-03 | N/A |
| Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option. | ||||
| CVE-2005-1312 | 1 Yappa-ng | 1 Yappa-ng | 2025-04-03 | N/A |
| PHP remote file inclusion vulnerability in Yappa-NG before 2.3.2 allows remote attackers to execute arbitrary PHP code via unknown vectors. | ||||
| CVE-2005-3781 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Unspecified vulnerability in in.named in Solaris 9 allows attackers to cause a denial of service via unknown manipulations that cause in.named to "make unnecessary queries." | ||||