Export limit exceeded: 29948 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29948 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-1064 | 1 Rsnapshot | 1 Filesystem Snapshot Utility | 2026-04-16 | N/A |
| The copy_symlink function in rsnapshot 1.2.0 and 1.1.x before 1.1.7 changes the ownership of files that a symlink points to rather than the symlink itself, which allows local users to obtain access to arbitrary files. | ||||
| CVE-2005-1065 | 1 Novell | 1 Linux Desktop | 2026-04-16 | N/A |
| tetex in Novell Linux Desktop 9 allows local users to determine the existence of arbitrary files via a symlink attack in the /var/cache/fonts directory. | ||||
| CVE-2005-1066 | 1 University Of Washington | 1 Pine | 2026-04-16 | N/A |
| Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack. | ||||
| CVE-2005-1067 | 1 Access User Class | 1 Access User Class | 2026-04-16 | N/A |
| Vulnerability in Access_user Class before 1.75 allows local users to gain access as other users via the password "new". | ||||
| CVE-2005-1068 | 1 Scssboard | 1 Scssboard | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in sCssBoard 1.11 and earlier allows remote attackers to execute arbitrary Javascript via [url] tags. | ||||
| CVE-2005-1069 | 1 Scssboard | 1 Scssboard | 2026-04-16 | N/A |
| Unknown vulnerability in sCssBoard 1.11 and earlier has unknown impact, related to "an exploit on the Profile page." | ||||
| CVE-2005-1070 | 1 Invision Power Services | 1 Invision Board | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and earlier allows remote attackers to execute arbitrary SQL commands via the st parameter. | ||||
| CVE-2005-1074 | 1 Radscripts | 1 Radbids | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php for RadScripts RadBids Gold 2 allows remote attackers to execute arbitrary SQL commands via the mode parameter. | ||||
| CVE-2005-1075 | 1 Radscripts | 1 Radbids | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote attackers to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat, (3) order, or (4) area parameters to index.php. | ||||
| CVE-2005-1076 | 1 Webct | 1 Webct | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in the discussion board functionality for WebCT Campus Edition 4.1 allows remote attackers to inject arbitrary web script or HTML via the message field. | ||||
| CVE-2005-1077 | 1 Xampp | 1 Apache Distribution | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.4.x allow remote attackers to inject arbitrary web script or HTML via (1) cds.php, (2) Guestbook-EN.pl, or (3) phonebook.php. | ||||
| CVE-2005-1078 | 1 Xampp | 1 Apache Distribution | 2026-04-16 | N/A |
| XAMPP 1.4.x has multiple default or null passwords, which allows attackers to gain privileges. | ||||
| CVE-2005-1079 | 1 Mike De Boer | 1 Zoom Media Gallery | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php for zOOm Media Gallery 2.1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter. | ||||
| CVE-2005-1081 | 1 Azerbaijan Development Group | 1 Azdgdating | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in view.php in AzDGDatingPlatinum 1.1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter. | ||||
| CVE-2005-1083 | 1 Aewebworks | 1 Aedating | 2026-04-16 | N/A |
| index.php in aeDating 3.2 allows remote attackers to include arbitrary files via the skin parameter. | ||||
| CVE-2005-1084 | 1 Aewebworks | 1 Aedating | 2026-04-16 | N/A |
| SQL injection vulnerability in sdating.php in aeDating 3.2 allows remote attackers to execute arbitrary SQL commands files via the event parameter. | ||||
| CVE-2005-1085 | 1 Aewebworks | 1 Aedating | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in the control panel in aeDating 3.2 allows remote attackers to inject arbitrary web script or HTML. | ||||
| CVE-2005-1086 | 1 An | 1 An-httpd | 2026-04-16 | N/A |
| Buffer overflow in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to execute arbitrary code via an HTTP request with a long User-Agent header. | ||||
| CVE-2005-1087 | 1 An | 1 An-httpd | 2026-04-16 | N/A |
| CRLF injection vulnerability in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to spoof or hide entries in the logfile, and possibly read files using an injected type command, via CRLF sequences in an HTTP request. | ||||
| CVE-2005-1088 | 1 Dameware Development | 2 Mini Remote Control, Nt Utilities | 2026-04-16 | N/A |
| Unknown vulnerability in DameWare NT Utilities 4.8 and earlier, and Mini Remote Control 4.8 and earlier, allows local users to gain additional rights. | ||||