ReportizFlow
Filtered by vendor
Subscriptions
Total
29914 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0912 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files. | ||||
| CVE-2002-0461 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Internet Explorer 5.01 through 6 allows remote attackers to cause a denial of service (application crash) via Javascript in a web page that calls location.replace on itself, causing a loop. | ||||
| CVE-1999-0608 | 1 Pdgsoft | 1 Pdg Shopping Cart | 2026-04-16 | N/A |
| An incorrect configuration of the PDG Shopping Cart CGI program "shopper.cgi" could disclose private information. | ||||
| CVE-1999-0775 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list. | ||||
| CVE-2002-0466 | 1 Hosting Controller | 1 Hosting Controller | 2026-04-16 | N/A |
| Hosting Controller 1.4.1 and earlier allows remote attackers to browse arbitrary directories via a full C: style pathname in the filepath arguments to (1) Statsbrowse.asp, (2) servubrowse.asp, (3) browsedisk.asp, (4) browsewebalizerexe.asp, or (5) sqlbrowse.asp. | ||||
| CVE-1999-0607 | 1 I-soft | 1 Quikstore | 2026-04-16 | N/A |
| quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attackers to obtain the cleartext administrator password and gain privileges. | ||||
| CVE-2002-0472 | 1 Microsoft | 1 Msn Messenger | 2026-04-16 | N/A |
| MSN Messenger Service 3.6, and possibly other versions, uses weak authentication when exchanging messages between clients, which allows remote attackers to spoof messages from other users. | ||||
| CVE-1999-0302 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server. | ||||
| CVE-2002-0474 | 1 Zeroforum | 1 Zeroforum | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in ZeroForum allows remote attackers to execute arbitrary Javascript on web clients by embedding the script within IMG image tag. | ||||
| CVE-2002-0484 | 1 Php | 1 Php | 2026-04-16 | N/A |
| move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote attackers to upload files to unintended locations on the system. | ||||
| CVE-2004-2300 | 1 Ucd-snmp | 1 Ucd-snmp | 2026-04-16 | N/A |
| Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this issue should not be included in CVE. | ||||
| CVE-2002-0496 | 1 Southwest | 1 Southwest | 2026-04-16 | N/A |
| The HTTP server for SouthWest Talker server 1.0.0 allows remote attackers to cause a denial of service (server crash) via a malformed URL to port 5002. | ||||
| CVE-2002-0503 | 1 Citrix | 1 Nfuse | 2026-04-16 | N/A |
| Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the NFuse_Template parameter. | ||||
| CVE-2005-2785 | 1 Cosmoshop | 1 Cosmoshop | 2026-04-16 | N/A |
| cosmoshop 8.10.78 and earlier stores passwords in plaintext in the database, which allows local users to obtain sensitive information. | ||||
| CVE-1999-0367 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| NetBSD netstat command allows local users to access kernel memory. | ||||
| CVE-2002-0525 | 1 Isc | 1 Inn | 2026-04-16 | N/A |
| Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP servers to gain privileges via format string specifiers in NTTP responses. | ||||
| CVE-2002-0530 | 1 Novell | 1 Web Search | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in Novell Web Search 2.0.1 allows remote attackers to execute arbitrary script as other Web Search users via the search parameter. | ||||
| CVE-2005-2808 | 1 Frox | 1 Frox | 2026-04-16 | N/A |
| frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts. | ||||
| CVE-2002-0532 | 1 Emumail | 3 Emumail, Emumail Red Hat Linux, Emumail Unix | 2026-04-16 | N/A |
| EMU Webmail allows local users to execute arbitrary programs via a .. (dot dot) in the HTTP Host header that points to a Trojan horse configuration file that contains a pageroot specifier that contains shell metacharacters. | ||||
| CVE-2002-0539 | 1 Demarc Security | 1 Puresecure | 2026-04-16 | N/A |
| Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie. | ||||