ReportizFlow
Filtered by vendor
Subscriptions
Total
29887 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-2331 | 1 Moosegallery | 1 Moosegallery | 2025-04-03 | N/A |
| PHP remote file inclusion vulnerability in display.php in MooseGallery allows remote attackers to execute arbitrary PHP code via the type parameter. | ||||
| CVE-2005-2603 | 1 My Image Gallery | 1 My Image Gallery | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in index.php for My Image Gallery (Mig ) 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the (1) currDir or (2) image parameters. | ||||
| CVE-2005-2334 | 1 Y.sak | 1 Y.sak | 2025-04-03 | N/A |
| Y.SAK allows remote attackers to execute arbitrary commands via shell metacharacters in the $no variable to (1) w_s3mbfm.cgi, (2) w_s3adix.cgi, or (3) w_s3sbfm.cgi. | ||||
| CVE-2005-2610 | 1 Vegadns | 1 Vegadns | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in index.php in VegaDNS 0.8.1, 0.9.8, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the message parameter. | ||||
| CVE-2005-2612 | 1 Wordpress | 1 Wordpress | 2025-04-03 | N/A |
| Direct code injection vulnerability in WordPress 1.5.1.3 and earlier allows remote attackers to execute arbitrary PHP code via the cache_lastpostdate[server] cookie. | ||||
| CVE-2005-2662 | 1 Masqmail | 1 Masqmail | 2025-04-03 | N/A |
| masqmail before 0.2.18 allows remote attackers to execute arbitrary commands via crafted e-mail addresses that are not properly sanitized when creating a failed delivery message. | ||||
| CVE-2005-3531 | 1 Miklos Szeredi | 1 Fuse | 2025-04-03 | N/A |
| fusermount in FUSE before 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose name contains certain special characters. | ||||
| CVE-2005-2677 | 1 Acnews | 1 Acnews | 2025-04-03 | N/A |
| ACNews stores the database in a file under the web document root with a db.inc extension and insufficient access control, which allows remote attackers to obtain sensitive information such as the full pathname of the server. | ||||
| CVE-2005-3533 | 1 Osh | 1 Osh | 2025-04-03 | N/A |
| Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename. | ||||
| CVE-2005-3635 | 1 Sap | 1 Sap Web Application Server | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in SAP Web Application Server (WAS) 6.10 through 7.00 allow remote attackers to inject arbitrary web script or HTML via (1) the sap-syscmd in sap-syscmd and (2) the BspApplication field in the SYSTEM PUBLIC test application. | ||||
| CVE-1999-0014 | 3 Cde, Hp, Ibm | 4 Cde, Hp-ux, Vvos and 1 more | 2025-04-03 | N/A |
| Unauthorized privileged access or denial of service via dtappgather program in CDE. | ||||
| CVE-1999-0076 | 1 Washington University | 1 Wu-ftpd | 2025-04-03 | N/A |
| Buffer overflow in wu-ftp from PASV command causes a core dump. | ||||
| CVE-1999-0083 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| getcwd() file descriptor leak in FTP. | ||||
| CVE-1999-0088 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| IRIX and AIX automountd services (autofsd) allow remote users to execute root commands. | ||||
| CVE-1999-0131 | 8 Bsdi, Digital, Eric Allman and 5 more | 9 Bsd Os, Osf 1, Sendmail and 6 more | 2025-04-03 | N/A |
| Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. | ||||
| CVE-1999-0156 | 1 Washington University | 1 Wu-ftpd | 2025-04-03 | N/A |
| wu-ftpd FTP daemon allows any user and password combination. | ||||
| CVE-1999-0163 | 1 Eric Allman | 1 Sendmail | 2025-04-03 | N/A |
| In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | ||||
| CVE-1999-0177 | 1 Oreilly | 1 Website | 2025-04-03 | N/A |
| The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs. | ||||
| CVE-1999-0208 | 3 Ibm, Nec, Sgi | 5 Aix, Asl Ux 4800, Ews-ux V and 2 more | 2025-04-03 | N/A |
| rpc.ypupdated (NIS) allows remote users to execute arbitrary commands. | ||||
| CVE-1999-0245 | 1 Linux | 1 Linux Kernel | 2025-04-03 | N/A |
| Some configurations of NIS+ in Linux allowed attackers to log in as the user "+". | ||||