ReportizFlow
Filtered by vendor
Subscriptions
Total
29902 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2002-0615 | 1 Microsoft | 2 Excel, Office | 2026-04-16 | N/A |
| The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing attackers to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation". | ||||
| CVE-2003-0472 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| The IPv6 capability in IRIX 6.5.19 allows remote attackers to cause a denial of service (hang) in inetd via port scanning. | ||||
| CVE-2002-0687 | 2 Redhat, Zope | 2 Powertools, Zope | 2026-04-16 | N/A |
| The "through the web code" capability for Zope 2.0 through 2.5.1 b1 allows untrusted users to shut down the Zope server via certain headers. | ||||
| CVE-2002-0715 | 2 Redhat, Squid | 3 Enterprise Linux, Linux, Squid | 2026-04-16 | N/A |
| Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password. | ||||
| CVE-2002-0892 | 1 New Atlanta Communications | 1 Servletexec Isapi | 2026-04-16 | N/A |
| The default configuration of NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to determine the path of the web root via a direct request to com.newatlanta.servletexec.JSP10Servlet without a filename, which leaks the pathname in an error message. | ||||
| CVE-2002-0894 | 1 New Atlanta Communications | 1 Servletexec Isapi | 2026-04-16 | N/A |
| NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service (crash) via (1) a request for a long .jsp file, or (2) a long URL sent directly to com.newatlanta.servletexec.JSP10Servlet. | ||||
| CVE-1999-1351 | 1 Kvirc | 1 Irc Client | 2026-04-16 | N/A |
| Directory traversal vulnerability in KVIrc IRC client 0.9.0 with the "Listen to !nick <soundname> requests" option enabled allows remote attackers to read arbitrary files via a .. (dot dot) in a DCC GET request. | ||||
| CVE-2002-0902 | 1 Phpbb Group | 1 Phpbb | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in phpBB 2.0.0 (phpBB2) allows remote attackers to execute Javascript as other phpBB users by including a http:// and a double-quote (") in the [IMG] tag, which bypasses phpBB's security check, terminates the src parameter of the resulting HTML IMG tag, and injects the script. | ||||
| CVE-2002-0926 | 1 Wolfram Research | 1 Webmathematica | 2026-04-16 | N/A |
| Directory traversal vulnerability in Wolfram Research webMathematica 1.0.0 and 1.0.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the MSPStoreID parameter. | ||||
| CVE-2005-1893 | 1 Flatnuke | 1 Flatnuke | 2026-04-16 | N/A |
| FlatNuke 2.5.3 allows remote attackers to obtain sensitive information via invalid parameters to certain scripts, which leaks the web document root in an error message. | ||||
| CVE-2006-3670 | 1 Rabox | 1 Winlpd | 2026-04-16 | N/A |
| Stack-based buffer overflow in Winlpd 1.26 allows remote attackers to execute arbitrary code via a long string in a request to TCP port 515. | ||||
| CVE-2002-1743 | 1 Mirabilis | 1 Icq | 2026-04-16 | N/A |
| AOL ICQ 2002a Build 3722 allows remote attackers to cause a denial of service (crash) via a malformed .hpf file. | ||||
| CVE-2006-3689 | 1 Codeworks | 1 Gnomedia Subberz | 2026-04-16 | N/A |
| PHP remote file inclusion vulnerability in user-func.php in Codeworks Gnomedia SubberZ[Lite] allows remote attackers to execute arbitrary PHP code via a URL in the myadmindir parameter. NOTE: this issue has been disputed by a third party that claims that " the myadmindir variable is set before any GET variables are processed. | ||||
| CVE-2002-1409 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| ptrace on HP-UX 11.00 through 11.11 allows local users to cause a denial of service (data page fault panic) via "an incorrect reference to thread register state." | ||||
| CVE-2006-3690 | 1 Minibb | 1 Forum | 2026-04-16 | N/A |
| Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) components/com_minibb.php or (2) components/minibb/index.php. | ||||
| CVE-2002-1448 | 1 Avaya | 3 Cajun M770-atm, Cajun P130, Cajun P330 | 2026-04-16 | N/A |
| An undocumented SNMP read/write community string ('NoGaH$@!') in Avaya P330, P130, and M770-ATM Cajun products allows remote attackers to gain administrative privileges. | ||||
| CVE-2002-1764 | 1 Adobe | 1 Acrobat Reader | 2026-04-16 | N/A |
| acroread in Adobe Acrobat Reader 4.05 on Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files. | ||||
| CVE-2005-1899 | 1 Rakkarsoft | 1 Raknet | 2026-04-16 | N/A |
| Rakkarsoft RakNet network library 2.33 and earlier, when released before 30 May 2005, and as used in multiple products including nFusion Elite Warriors: Vietnam, allows remote attackers to cause a denial of service (infinite loop) via a zero-byte UDP packet. | ||||
| CVE-2000-0005 | 1 Hp | 3 9000, Aserver, Hp-ux | 2026-04-16 | N/A |
| HP-UX aserver program allows local users to gain privileges via a symlink attack. | ||||
| CVE-2000-0008 | 1 1st Choice Software | 1 Ftppro | 2026-04-16 | N/A |
| FTPPro allows local users to read sensitive information, which is stored in plain text. | ||||