ReportizFlow
Filtered by vendor
Subscriptions
Total
29925 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-4463 | 1 Wordpress | 1 Wordpress | 2026-04-16 | N/A |
| WordPress before 1.5.2 allows remote attackers to obtain sensitive information via a direct request to (1) wp-includes/vars.php, (2) wp-content/plugins/hello.php, (3) wp-admin/upgrade-functions.php, (4) wp-admin/edit-form.php, (5) wp-settings.php, and (6) wp-admin/edit-form-comment.php, which leaks the path in an error message related to undefined functions or failed includes. NOTE: the wp-admin/menu-header.php vector is already covered by CVE-2005-2110. NOTE: the vars.php, edit-form.php, wp-settings.php, and edit-form-comment.php vectors were also reported to affect WordPress 2.0.1. | ||||
| CVE-2004-0254 | 1 Crosscom Olicom | 1 Discuz | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Discuz! Board 2.x and 3.x allows remote attackers to execute arbitrary script as other users via an img tag. | ||||
| CVE-2006-1952 | 1 Winagents | 1 Tftp Server | 2026-04-16 | N/A |
| Directory traversal vulnerability in WinAgents TFTP Server for Windows 3.1 and earlier allows remote attackers to read arbitrary files via "..." (triple dot) sequences in a GET request. | ||||
| CVE-1999-0164 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| A race condition in the Solaris ps command allows an attacker to overwrite critical files. | ||||
| CVE-1999-0257 | 1 Linux | 1 Linux Kernel | 2026-04-16 | N/A |
| Nestea variation of teardrop IP fragmentation denial of service. | ||||
| CVE-1999-0266 | 1 Roar Smith | 1 Info2www | 2026-04-16 | N/A |
| The info2www CGI script allows remote file access or remote command execution. | ||||
| CVE-1999-0271 | 2026-04-16 | N/A | ||
| Progressive Networks Real Video server (pnserver) can be crashed remotely. | ||||
| CVE-1999-0314 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| ioconfig on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames. | ||||
| CVE-1999-0318 | 4 Hp, Ibm, Redhat and 1 more | 5 Hp-ux, Aix, Linux and 2 more | 2026-04-16 | N/A |
| Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable. | ||||
| CVE-1999-0369 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access. | ||||
| CVE-2005-4780 | 1 Fidra Software | 1 Lighthouse Cms | 2026-04-16 | 3.7 Low |
| Cross-site scripting (XSS) vulnerability in Fidra Lighthouse CMS 1.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a query_string to the home page. NOTE: The vendor disputes this issue, saying "Lighthouse does not in any way make use of the PHP technology. [It] is an application server ... A technology like this cannot be susceptible to client-side cross-site-scripting-attacks on its own, but only applications created based on such a technology. This does not only apply to Lighthouse, but also to Perl, PHP or web applications based on Java Servlet technology." Since the original researcher is known to test demo pages and is sometimes inaccurate, it is likely that this issue will be REJECTED | ||||
| CVE-2006-1531 | 2 Debian, Mozilla | 4 Debian Linux, Firefox, Seamonkey and 1 more | 2026-04-16 | N/A |
| Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due to the lack of sufficient public details from the vendor as of 20060413, it is unclear how CVE-2006-1529, CVE-2006-1530, CVE-2006-1531, and CVE-2006-1723 are different. | ||||
| CVE-1999-0414 | 1 Linux | 1 Linux Kernel | 2026-04-16 | N/A |
| In Linux before version 2.0.36, remote attackers can spoof a TCP connection and pass data to the application layer before fully establishing the connection. | ||||
| CVE-2001-0147 | 1 Microsoft | 1 Windows 2000 | 2026-04-16 | N/A |
| Buffer overflow in Windows 2000 event viewer snap-in allows attackers to execute arbitrary commands via a malformed field that is improperly handled during the detailed view of event records. | ||||
| CVE-2001-0167 | 1 Att | 1 Winvnc | 2026-04-16 | N/A |
| Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string. | ||||
| CVE-2001-0175 | 1 Netscape | 1 Fasttrack Server | 2026-04-16 | N/A |
| The caching module in Netscape Fasttrack Server 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by requesting a large number of non-existent URLs. | ||||
| CVE-2001-0176 | 1 Voyant Technologies | 1 Sonata | 2026-04-16 | N/A |
| The setuid doroot program in Voyant Sonata 3.x executes arbitrary command line arguments, which allows local users to gain root privileges. | ||||
| CVE-2001-0185 | 1 Netopia | 1 R9100 Router | 2026-04-16 | N/A |
| Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash. | ||||
| CVE-2001-0190 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). | ||||
| CVE-2001-0235 | 1 Debian | 1 Debian Linux | 2026-04-16 | N/A |
| Vulnerability in crontab allows local users to read crontab files of other users by replacing the temporary file that is being edited while crontab is running. | ||||