Export limit exceeded: 29948 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2006-3523 1 Clearswift 1 Mimesweeper For Web 2026-04-16 N/A
Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to cause a denial of service (crash) via an encrypted archived .RAR file, which triggers a scan error and causes the Web Policy Engine service to terminate.
CVE-2006-3524 1 Sipfoundry 1 Sipxtapi 2026-04-16 N/A
Buffer overflow in SIPfoundry sipXtapi released before 20060324 allows remote attackers to execute arbitrary code via a long CSeq field value in an INVITE message.
CVE-2006-3525 1 Phpcredo 1 Phcdownload 2026-04-16 N/A
SQL injection vulnerability in category.php in PHCDownload 1.0.0 Final and 1.0.0 Release Candidate 6 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2001-1550 1 Centra 3 Asp, Centraone, Smart Connect 2026-04-16 N/A
CentraOne 5.2 and Centra ASP with basic authentication enabled creates world-writable base64 encoded log files, which allows local users to obtain cleartext passwords from decoded log files and impersonate users.
CVE-2006-3526 1 Sport-slo 1 Sport-slo Advanced Guestbook 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Sport-slo Advanced Guestbook 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) name and (2) form parameters.
CVE-2006-0046 1 Cameron Simpson 1 Adzapper 2026-04-16 N/A
squid_redirect script in adzapper before 2006-01-29 allows remote attackers to cause a denial of service (CPU consumption) via a URL with a large number of trailing / (forward slashes), which might produce inefficient regular expressions.
CVE-2006-3527 1 Bosdev 1 Bosclassifieds Classified Ads 2026-04-16 N/A
Multiple PHP remote file inclusion vulnerabilities in BosClassifieds Classified Ads allow remote attackers to execute arbitrary PHP code via a URL in the insPath parameter to (1) index.php, (2) recent.php, (3) account.php, (4) classified.php, or (5) search.php.
CVE-2006-0048 1 Francesco Stablum 1 Tcpick 2026-04-16 N/A
Francesco Stablum tcpick 0.2.1 allows remote attackers to cause a denial of service (segmentation fault) via certain fragmented packets, possibly involving invalid headers and an attacker-controlled payload length. NOTE: this issue might be a buffer overflow or overread.
CVE-2001-1517 1 Microsoft 1 Windows 2000 2026-04-16 N/A
RunAs (runas.exe) in Windows 2000 stores cleartext authentication information in memory, which could allow attackers to obtain usernames and passwords by executing a process that is allocated the same memory page after termination of a RunAs command. NOTE: the vendor disputes this issue, saying that administrative privileges are already required to exploit it, and the original researcher did not respond to requests for additional information
CVE-2000-1228 1 Phorum 1 Phorum 2026-04-16 N/A
Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.
CVE-2002-2001 2 Jmcce, Mandrakesoft 2 Jmcce, Mandrake Linux 2026-04-16 N/A
jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.
CVE-2002-2006 1 Apache 1 Tomcat 2026-04-16 N/A
The default installation of Apache Tomcat 4.0 through 4.1 and 3.0 through 3.3.1 allows remote attackers to obtain the installation path and other sensitive system information via the (1) SnoopServlet or (2) TroubleShooter example servlets.
CVE-2005-1514 1 Dan Bernstein 1 Qmail 2026-04-16 N/A
commands.c in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SMTP command without a space character, which causes an array to be referenced with a negative index.
CVE-2005-2974 2 Libungif, Redhat 2 Libungif, Enterprise Linux 2026-04-16 N/A
libungif library before 4.1.0 allows attackers to cause a denial of service via a crafted GIF file that triggers a null dereference.
CVE-1999-0061 4 Bsdi, Freebsd, Linux and 1 more 4 Bsd Os, Freebsd, Linux Kernel and 1 more 2026-04-16 N/A
File creation and deletion, and remote execution, in the BSD line printer daemon (lpd).
CVE-1999-0062 1 Openbsd 1 Openbsd 2026-04-16 N/A
The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage.
CVE-1999-0063 1 Cisco 1 Ios 2026-04-16 N/A
Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port.
CVE-1999-0064 1 Ibm 1 Aix 2026-04-16 N/A
Buffer overflow in AIX lquerylv program gives root access to local users.
CVE-1999-0065 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands.
CVE-1999-0066 1 John S. Roberts 1 Anyform 2026-04-16 9.8 Critical
AnyForm CGI remote execution.