ReportizFlow
Filtered by vendor
Subscriptions
Total
29885 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0056 | 1 Ipswitch | 1 Imail | 2025-04-03 | N/A |
| IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi. | ||||
| CVE-2006-4642 | 1 Auditwizard | 1 Auditwizard | 2025-04-03 | N/A |
| AuditWizard 6.3.2, when using "Remote Audit," logs the administrator password in plaintext to LaytonCmdSvc.log, which allows local users to obtain sensitive information by reading the file. | ||||
| CVE-2000-0069 | 1 Sun | 1 Solstice Backup | 2025-04-03 | N/A |
| The recover program in Solstice Backup allows local users to restore sensitive files. | ||||
| CVE-2000-0104 | 1 Web Express | 1 Shoptron | 2025-04-03 | N/A |
| The Shoptron shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2005-0890 | 1 Dream4 | 1 Koobi Cms | 2025-04-03 | N/A |
| SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter. | ||||
| CVE-2000-0135 | 1 Atretail | 1 Atretail | 2025-04-03 | N/A |
| The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2006-4667 | 1 Runcms | 1 Runcms | 2025-04-03 | N/A |
| Multiple SQL injection vulnerabilities in RunCMS 1.4.1 allow remote attackers to execute arbitrary SQL commands via the (1) uid parameter in (a) class/sessions.class.php, and the (2) timezone_offset and (3) umode parameters in (b) class/xoopsuser.php. | ||||
| CVE-2000-0232 | 1 Microsoft | 3 Terminal Server, Windows 2000, Windows Nt | 2025-04-03 | N/A |
| Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request. | ||||
| CVE-2000-0419 | 1 Microsoft | 10 Access, Excel, Frontpage and 7 more | 2025-04-03 | N/A |
| The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability. | ||||
| CVE-2000-0424 | 1 George Burgyan | 1 Cgi Counter | 2025-04-03 | N/A |
| The CGI counter 4.0.7 by George Burgyan allows remote attackers to execute arbitrary commands via shell metacharacters. | ||||
| CVE-2005-1785 | 1 Zongg | 1 Zongg | 2025-04-03 | N/A |
| SQL injection vulnerability in ad/login.asp in ZonGG 1.2 allows remote attackers to execute arbitrary SQL commands via the password parameter. | ||||
| CVE-2005-1472 | 1 Apple | 1 Mac Os X | 2025-04-03 | N/A |
| Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce the permissions of certain directories without the POSIX read bit set, but with the execute bits set for group or other, which allows local users to list files in otherwise restricted directories. | ||||
| CVE-2000-0427 | 1 Aladdin Knowledge Systems | 1 Etoken | 2025-04-03 | N/A |
| The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM. | ||||
| CVE-2000-0430 | 1 Mcmurtrey Whitaker And Associates | 1 Cart32 | 2025-04-03 | N/A |
| Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request. | ||||
| CVE-2005-1647 | 1 Gurgens | 1 Gurgens Guest Book | 2025-04-03 | N/A |
| Gurgens (GASoft) Guest Book 2.1 stores the db/Genid.dat database file under the web document root with insufficient access control, which allows remote attackers to obtain and decrypt usernames and passwords. | ||||
| CVE-2000-0449 | 1 Omnis | 1 Studio | 2025-04-03 | N/A |
| Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields. | ||||
| CVE-2005-1904 | 1 Jiro | 1 Jiro Upload System | 2025-04-03 | N/A |
| SQL injection vulnerability in login.asp in JiRo's Upload System (JUS) 1 allows remote attackers to execute arbitrary SQL commands via the password parameter. | ||||
| CVE-2000-0470 | 1 Allegro | 1 Rom Pager | 2025-04-03 | N/A |
| Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication request. | ||||
| CVE-2000-0476 | 4 Michael Jennings, Putty, Rxvt and 1 more | 4 Eterm, Putty, Rxvt and 1 more | 2025-04-03 | N/A |
| xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized. | ||||
| CVE-2000-0483 | 2 Redhat, Zope | 2 Linux Powertools, Zope | 2025-04-03 | N/A |
| The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization. | ||||