Export limit exceeded: 29948 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29948 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0917 | 3 Caldera, Redhat, Trustix | 6 Openlinux, Openlinux Ebuilder, Openlinux Edesktop and 3 more | 2026-04-16 | N/A |
| Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands. | ||||
| CVE-2000-0919 | 1 Phpix | 1 Phpix | 2026-04-16 | N/A |
| Directory traversal vulnerability in PHPix Photo Album 1.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0920 | 1 Boa | 1 Boa Webserver | 2026-04-16 | N/A |
| Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack in the GET HTTP request that uses a "%2E" instead of a "." | ||||
| CVE-2000-0921 | 1 Hassan Consulting | 1 Shopping Cart | 2026-04-16 | N/A |
| Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter. | ||||
| CVE-2000-0922 | 1 Bytes Interactive | 1 Web Shopper | 2026-04-16 | N/A |
| Directory traversal vulnerability in Bytes Interactive Web Shopper shopping cart program (shopper.cgi) 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the newpage parameter. | ||||
| CVE-2000-0923 | 1 Aplio | 1 Aplio Phone | 2026-04-16 | N/A |
| authenticate.cgi CGI program in Aplio PRO allows remote attackers to execute arbitrary commands via shell metacharacters in the password parameter. | ||||
| CVE-2000-0924 | 1 Armada Design | 1 Master Index | 2026-04-16 | N/A |
| Directory traversal vulnerability in search.cgi CGI script in Armada Master Index allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catigory" parameter. | ||||
| CVE-2000-0925 | 1 Smartwin Technology | 1 Cyberoffice Shopping Cart | 2026-04-16 | N/A |
| The default installation of SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) installs the _private directory with world readable permissions, which allows remote attackers to obtain sensitive information. | ||||
| CVE-2000-0926 | 1 Smartwin Technology | 1 Cyberoffice Shopping Cart | 2026-04-16 | N/A |
| SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) allows remote attackers to modify price information by changing the "Price" hidden form variable. | ||||
| CVE-2000-0927 | 1 Wquinn | 1 Quotaadvisor | 2026-04-16 | N/A |
| WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions. | ||||
| CVE-2000-0929 | 1 Microsoft | 1 Windows Media Player | 2026-04-16 | N/A |
| Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability. | ||||
| CVE-2000-0931 | 1 David Harris | 1 Pegasus Mail | 2026-04-16 | N/A |
| Buffer overflow in Pegasus Mail 3.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long email message containing binary data. | ||||
| CVE-2000-0932 | 1 Clearswift | 1 Mailsweeper For Smtp | 2026-04-16 | N/A |
| MAILsweeper for SMTP 3.x does not properly handle corrupt CDA documents in a ZIP file and hangs, which allows remote attackers to cause a denial of service. | ||||
| CVE-2000-0949 | 2 Lbl, Sun | 2 Lbl Traceroute, Sunos | 2026-04-16 | N/A |
| Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option. | ||||
| CVE-2000-0950 | 1 Tis | 1 Internet Firewall Toolkit | 2026-04-16 | N/A |
| Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name. | ||||
| CVE-2000-0951 | 1 Microsoft | 1 Internet Information Services | 2026-04-16 | N/A |
| A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search. | ||||
| CVE-2000-0952 | 1 Shigio Yamaguchi | 1 Global | 2026-04-16 | N/A |
| global.cgi CGI program in Global 3.55 and earlier on NetBSD allows remote attackers to execute arbitrary commands via shell metacharacters. | ||||
| CVE-2000-0953 | 1 Evolvable Corporation | 1 Shambala Server | 2026-04-16 | N/A |
| Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection. | ||||
| CVE-2000-0955 | 1 Cisco | 1 Virtual Central Office 4000 | 2026-04-16 | N/A |
| Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges. | ||||
| CVE-2000-0956 | 1 Carnegie Mellon University | 1 Cyrus-sasl | 2026-04-16 | N/A |
| cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions. | ||||