Search Results (363307 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2005-4691 1 Netbsd 1 Netbsd 2026-04-16 N/A
imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page.
CVE-1999-0873 1 Sky Communications 1 Skyfull 2026-04-16 N/A
Buffer overflow in Skyfull mail server via MAIL FROM command.
CVE-1999-0876 1 Microsoft 2 Ie, Internet Explorer 2026-04-16 N/A
Buffer overflow in Internet Explorer 4.0 via EMBED tag.
CVE-1999-0877 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME.
CVE-2004-1927 1 Tiki 1 Tikiwiki Cms\/groupware 2026-04-16 N/A
Directory traversal vulnerability in the map feature (tiki-map.phtml) in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to determine the existence of arbitrary files via .. (dot dot) sequences in the mapfile parameter.
CVE-2005-4692 1 Mroovca 1 Mroovca Stats 2026-04-16 N/A
Unspecified vulnerability in mroovca stats (mroovcastats) before 0.4.5b has unknown attack vectors and impact, related to cookies.
CVE-2006-4305 2 Mysql, Sap-db 2 Maxdb, Sap-db 2026-04-16 N/A
Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name when connecting via a WebDBM client.
CVE-1999-0880 2 Bsdi, Caldera 2 Bsd Os, Openlinux 2026-04-16 N/A
Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly.
CVE-2004-1929 1 Francisco Burzi 1 Php-nuke 2026-04-16 N/A
SQL injection vulnerability in the bblogin function in functions.php in PHP-Nuke 6.x through 7.2 allows remote attackers to bypass authentication and gain access by injecting base64-encoded SQL code into the user parameter.
CVE-2005-4693 1 Gaim-encryption 1 Gaim-encryption 2026-04-16 N/A
Gaim-Encryption 2.38-1 on Debian Linux allows remote attackers to cause a denial of service (crash) via a crafted message from an ICQ buddy, possibly involving the GE_received_key function in keys.c.
CVE-1999-0901 1 Linux-nis 1 Ypserv 2026-04-16 N/A
ypserv allows a local user to modify the GECOS and login shells of other users.
CVE-2005-4696 1 Microsoft 1 Windows Xp 2026-04-16 N/A
The Microsoft Wireless Zero Configuration system (WZCS) stores WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key in plaintext in memory of the explorer process, which allows attackers with access to process memory to steal the keys and access the network.
CVE-1999-0403 1 Cyrix 1 Linux 2026-04-16 N/A
A bug in Cyrix CPUs on Linux allows local users to perform a denial of service.
CVE-1999-0911 1 Proftpd Project 1 Proftpd 2026-04-16 N/A
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.
CVE-2005-4697 1 Microsoft 1 Windows Xp 2026-04-16 N/A
The Microsoft Wireless Zero Configuration system (WZCS) allows local users to access WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key via certain calls to the WZCQueryInterface API function in wzcsapi.dll.
CVE-2006-4308 1 Blackboard 3 Blackboard, Blackboard Learning And Community Portal Suite, Vista 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.
CVE-2004-1933 1 Citadel 1 Ux 2026-04-16 N/A
Citadel/UX 5.00 through 6.14 installs the database directory and files with world-read permissions, which could allow local users to bypass access controls and read unauthorized messages.
CVE-2005-4699 1 Kimihia 1 Tellme 2026-04-16 N/A
Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "--" style options in the q_Host parameter.
CVE-2006-4309 1 Ak-systems 1 Windows Terminal 2026-04-16 N/A
VNC server on the AK-Systems Windows Terminal 1.2.5 ExVLP is not password protected, which allows remote attackers to login and view RDP or Citrix sessions.
CVE-1999-0405 4 Debian, Freebsd, Redhat and 1 more 4 Debian Linux, Freebsd, Linux and 1 more 2026-04-16 N/A
A buffer overflow in lsof allows local users to obtain root privilege.