ReportizFlow
Filtered by vendor
Subscriptions
Total
29932 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0083 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| getcwd() file descriptor leak in FTP. | ||||
| CVE-1999-0076 | 1 Washington University | 1 Wu-ftpd | 2026-04-16 | N/A |
| Buffer overflow in wu-ftp from PASV command causes a core dump. | ||||
| CVE-1999-0156 | 1 Washington University | 1 Wu-ftpd | 2026-04-16 | N/A |
| wu-ftpd FTP daemon allows any user and password combination. | ||||
| CVE-1999-0163 | 1 Eric Allman | 1 Sendmail | 2026-04-16 | N/A |
| In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | ||||
| CVE-1999-0177 | 1 Oreilly | 1 Website | 2026-04-16 | N/A |
| The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs. | ||||
| CVE-1999-0245 | 1 Linux | 1 Linux Kernel | 2026-04-16 | N/A |
| Some configurations of NIS+ in Linux allowed attackers to log in as the user "+". | ||||
| CVE-1999-0368 | 7 Caldera, Debian, Proftpd Project and 4 more | 8 Openlinux, Debian Linux, Proftpd and 5 more | 2026-04-16 | N/A |
| Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto. | ||||
| CVE-2005-3722 | 1 Hitachi | 1 Ip5000 Voip Wifi Phone | 2026-04-16 | N/A |
| The SNMP v1/v2c daemon in Hitachi IP5000 VOIP WIFI Phone 1.5.6 allows remote attackers to gain read or write access to system configuration using arbitrary SNMP credentials. | ||||
| CVE-1999-0437 | 1 Ramp Networks | 1 Webramp | 2026-04-16 | N/A |
| Remote attackers can perform a denial of service in WebRamp systems by sending a malicious string to the HTTP port. | ||||
| CVE-2005-2623 | 1 Ecw-shop | 1 Ecw-shop | 2026-04-16 | N/A |
| ECW-Shop 6.0.2 allows remote attackers to reduce the total cost of their shopping cart by specifying a negative quantity for an item, which causes the price of the item to be subtracted from the total cost. | ||||
| CVE-2005-3758 | 1 Google | 2 Mini Search Appliance, Search Appliance | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to inject arbitrary Javascript, and possibly other web script or HTML, via a proxystylesheet variable that contains a malicious XSLT style sheet. | ||||
| CVE-2005-3769 | 1 Php Download Manager | 1 Php Download Manager | 2026-04-16 | N/A |
| SQL injection vulnerability in files.php in PHP Download Manager 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter. | ||||
| CVE-2005-3796 | 1 Alstrasoft | 1 Affiliate Network Pro | 2026-04-16 | N/A |
| Direct static code injection vulnerability in admin_options_manage.php in AlstraSoft Affiliate Network Pro 7.2 allows attackers to execute arbitrary PHP code via the number parameter. NOTE: it is not clear from the original report whether administrator privileges are required. If not, then this does not cross privilege boundaries and is not a vulnerability. | ||||
| CVE-2006-1041 | 1 Gregarius | 1 Gregarius | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Gregarius 0.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) rss_query parameter to search.php or (2) tag parameter to tags.php. | ||||
| CVE-2005-3914 | 1 Affcommerce | 1 Affcommerce | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in AFFcommerce 1.1.4 allow remote attackers to execute arbitrary SQL commands via (1) the cl parameter to SubCategory.php and the item_id parameter in (2) ItemInfo.php and (3) ItemReview.php. | ||||
| CVE-2005-3920 | 1 Babe Logger | 1 Babe Logger | 2026-04-16 | N/A |
| SQL injection vulnerability in Babe Logger 2 allows remote attackers to execute arbitrary SQL commands via the (1) gal parameter to index.php or (2) id parameter to comments.php. | ||||
| CVE-2005-3941 | 1 Greywyvern | 1 Orca Blog | 2026-04-16 | N/A |
| SQL injection vulnerability in blog.php in Orca Blog 1.3b and earlier allows remote attackers to execute arbitrary SQL commands via the msg parameter. | ||||
| CVE-2005-3977 | 1 Qualityebiz | 1 Qualityppc | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in QualityEBiz Quality PPC 1553 allows remote attackers to inject web script or HTML via the REQ parameter to the search module. | ||||
| CVE-2005-3983 | 1 Hp | 1 Systems Insight Manager | 2026-04-16 | N/A |
| Unknown vulnerability in the login page for HP Systems Insight Manager (SIM) 4.0 and 4.1, when accessed by Microsoft Internet Explorer with the MS04-025 patch, leads to a denial of service (browser hang). NOTE: although the advisory is vague, this issue does not appear to involve an attacker at all. If not, then this issue is not a vulnerability. | ||||
| CVE-2005-4018 | 1 Landshop | 1 Real Estate Commerce System | 2026-04-16 | N/A |
| SQL injection vulnerability in ls.php in Landshop Real Estate Commerce System 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) start, (2) search_order, (3) search_type, (4) search_area, and (5) keyword parameters. | ||||