Export limit exceeded: 347828 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (347828 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0135 | 1 Atretail | 1 Atretail | 2026-04-16 | N/A |
| The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0136 | 1 Mcmurtrey Whitaker And Associates | 1 Cart32 | 2026-04-16 | N/A |
| The Cart32 shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0137 | 1 Cartit | 1 Cartit | 2026-04-16 | N/A |
| The CartIt shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0140 | 1 True North | 1 Internet Anywhere Mail Server | 2026-04-16 | N/A |
| Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service via a large number of connections. | ||||
| CVE-2000-0141 | 1 Infopop | 1 Ultimate Bulletin Board | 2026-04-16 | N/A |
| Infopop Ultimate Bulletin Board (UBB) allows remote attackers to execute commands via shell metacharacters in the topic hidden field. | ||||
| CVE-2000-0142 | 1 Netopia | 1 Timbuktu Pro | 2026-04-16 | N/A |
| The authentication protocol in Timbuktu Pro 2.0b650 allows remote attackers to cause a denial of service via connections to port 407 and 1417. | ||||
| CVE-2000-0144 | 1 Axis | 1 700 Network Document Server | 2026-04-16 | N/A |
| Axis 700 Network Scanner does not properly restrict access to administrator URLs, which allows users to bypass the password protection via a .. (dot dot) attack. | ||||
| CVE-2000-0145 | 1 Debian | 1 Debian Linux | 2026-04-16 | N/A |
| The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions. | ||||
| CVE-2000-0146 | 1 Novell | 1 Groupwise | 2026-04-16 | N/A |
| The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet. | ||||
| CVE-2000-0148 | 1 Oracle | 1 Mysql | 2026-04-16 | N/A |
| MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string. | ||||
| CVE-2000-0150 | 2 Checkpoint, Cisco | 2 Firewall-1, Pix Firewall Software | 2026-04-16 | N/A |
| Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt. | ||||
| CVE-2000-0152 | 1 Novell | 1 Bordermanager | 2026-04-16 | N/A |
| Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000. | ||||
| CVE-2000-0153 | 1 Microsoft | 2 Frontpage, Personal Web Server | 2026-04-16 | N/A |
| FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack. | ||||
| CVE-2000-0154 | 1 Sco | 1 Unixware | 2026-04-16 | N/A |
| The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack. | ||||
| CVE-2000-0151 | 1 Gnu | 1 Make | 2026-04-16 | N/A |
| GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands. | ||||
| CVE-2000-0157 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process. | ||||
| CVE-2000-0158 | 1 Sco | 1 Openserver | 2026-04-16 | N/A |
| Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon. | ||||
| CVE-2000-0159 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges. | ||||
| CVE-2000-0160 | 1 Microsoft | 3 Ie, Internet Explorer, Outlook | 2026-04-16 | N/A |
| The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft. | ||||
| CVE-2000-0161 | 1 Microsoft | 1 Site Server | 2026-04-16 | N/A |
| Sample web sites on Microsoft Site Server 3.0 Commerce Edition do not validate an identification number, which allows remote attackers to execute SQL commands. | ||||