Export limit exceeded: 348218 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (348218 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-0274 | 1 Photopost | 1 Photopost Php Pro | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in showgallery.php in PhotoPost before 4.86 allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) si, (3) page, or (4) ppuser parameters. | ||||
| CVE-2001-0696 | 1 Netwin | 1 Surgeftp | 2026-04-16 | N/A |
| NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con. | ||||
| CVE-2001-0697 | 1 Netwin | 1 Surgeftp | 2026-04-16 | N/A |
| NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an 'ls ..' command. | ||||
| CVE-2001-0698 | 1 Netwin | 1 Surgeftp | 2026-04-16 | N/A |
| Directory traversal vulnerability in NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to list arbitrary files and directories via the 'nlist ...' command. | ||||
| CVE-2001-0699 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| Buffer overflow in cb_reset in the System Service Processor (SSP) package of SunOS 5.8 allows a local user to execute arbitrary code via a long argument. | ||||
| CVE-2001-0700 | 1 W3m | 1 W3m | 2026-04-16 | N/A |
| Buffer overflow in w3m 0.2.1 and earlier allows a remote attacker to execute arbitrary code via a long base64 encoded MIME header. | ||||
| CVE-2001-0701 | 1 Sun | 1 Sunvts | 2026-04-16 | N/A |
| Buffer overflow in ptexec in the Sun Validation Test Suite 4.3 and earlier allows a local user to gain privileges via a long -o argument. | ||||
| CVE-2001-0703 | 1 Arcadia | 1 Arcadia Internet Store | 2026-04-16 | N/A |
| tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to cause a denial of service via a URL request with an MS-DOS device name in the template parameter. | ||||
| CVE-2005-0280 | 1 Jowood Productions | 1 Soldner Secret Wars | 2026-04-16 | N/A |
| Format string vulnerability in Soldner Secret Wars 30830 and earlier allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in a message. | ||||
| CVE-2006-1162 | 1 Nodez | 1 Nodez | 2026-04-16 | N/A |
| Directory traversal vulnerability in Nodez 4.6.1.1 and earlier allows remote attackers to read or include arbitrary PHP files via a .. (dot dot) in the op parameter, as demonstrated by inserting malicious Email parameters into list.gtdat, then accessing list.gtdat using the op parameter. | ||||
| CVE-2001-0706 | 1 Maxum Development Corporation | 1 Rumpus Ftp Server | 2026-04-16 | N/A |
| Maximum Rumpus FTP Server 2.0.3 dev and before allows an attacker to cause a denial of service (crash) via a mkdir command that specifies a large number of sub-folders. | ||||
| CVE-2001-0707 | 1 Denicomp | 1 Rshd | 2026-04-16 | N/A |
| Denicomp RSHD 2.18 and earlier allows a remote attacker to cause a denial of service (crash) via a long string to port 514. | ||||
| CVE-2001-0708 | 1 Denicomp | 1 Rexecd | 2026-04-16 | N/A |
| Denicomp REXECD 1.05 and earlier allows a remote attacker to cause a denial of service (crash) via a long string. | ||||
| CVE-2001-0709 | 1 Microsoft | 1 Internet Information Server | 2026-04-16 | N/A |
| Microsoft IIS 4.0 and before, when installed on a FAT partition, allows a remote attacker to obtain source code of ASP files via a URL encoded with Unicode. | ||||
| CVE-2001-0710 | 2 Freebsd, Netbsd | 2 Freebsd, Netbsd | 2026-04-16 | N/A |
| NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool. | ||||
| CVE-2001-0711 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| Cisco IOS 11.x and 12.0 with ATM support allows attackers to cause a denial of service via the undocumented Interim Local Management Interface (ILMI) SNMP community string. | ||||
| CVE-2001-0713 | 1 Sendmail | 1 Sendmail | 2026-04-16 | N/A |
| Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom configuration files, which allows local users to gain privileges via malformed arguments in the configuration file whose names contain characters with the high bit set, such as (1) macro names that are one character long, (2) a variable setting which is processed by the setoption function, or (3) a Modifiers setting which is processed by the getmodifiers function. | ||||
| CVE-2005-0283 | 1 David Barrett | 1 Qwikiwiki | 2026-04-16 | N/A |
| Directory traversal vulnerability in index.php in QwikiWiki allows remote attackers to read arbitrary files via a .. (dot dot) and a %00 at the end of the filename in the page parameter. | ||||
| CVE-2001-0719 | 1 Microsoft | 1 Windows Media Player | 2026-04-16 | N/A |
| Buffer overflow in Microsoft Windows Media Player 6.4 allows remote attackers to execute arbitrary code via a malformed Advanced Streaming Format (ASF) file. | ||||
| CVE-2001-0720 | 1 Apple | 1 Mac Os X | 2026-04-16 | N/A |
| Internet Explorer 5.1 for Macintosh on Mac OS X allows remote attackers to execute arbitrary commands by causing a BinHex or MacBinary file type to be downloaded, which causes the files to be executed if automatic decoding is enabled. | ||||