Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0910 1 Microsoft 3 Commercial Internet System, Site Server, Site Server Commerce 2026-04-16 N/A
Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user.
CVE-2001-1296 1 Marc Logemann 1 More.groupware 2026-04-16 N/A
More.groupware PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2002-0582 1 Workforceroi 1 Xpede 2026-04-16 N/A
WorkforceROI Xpede 4.1 stores temporary expense claim reports in a world-readable and indexable /reports/temp directory, which allows remote attackers to read the reports by accessing the directory.
CVE-1999-0911 1 Proftpd Project 1 Proftpd 2026-04-16 N/A
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.
CVE-1999-0912 1 Freebsd 1 Freebsd 2026-04-16 N/A
FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files.
CVE-1999-0913 1 Network Security Wizards 1 Dragon-fire Ids 2026-04-16 N/A
dfire.cgi script in Dragon-Fire IDS allows remote users to execute commands via shell metacharacters.
CVE-1999-0914 1 Debian 1 Debian Linux 2026-04-16 N/A
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
CVE-1999-0923 1 Allaire 1 Coldfusion Server 2026-04-16 N/A
Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.
CVE-2001-1304 1 Nullsoft 1 Shoutcast Server 2026-04-16 N/A
Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.
CVE-2002-0590 1 Icredibb 1 Icredibb 2026-04-16 N/A
Cross-site scripting (CSS) vulnerability in IcrediBB 1.1 Beta allows remote attackers to execute arbitrary script and steal cookies as other IcrediBB users via the (1) title or (2) body of posts.
CVE-1999-0924 1 Allaire 1 Coldfusion Server 2026-04-16 N/A
The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service.
CVE-1999-0925 1 Messagemedia 1 Unitymail 2026-04-16 N/A
UnityMail allows remote attackers to conduct a denial of service via a large number of MIME headers.
CVE-2001-1305 1 Mirabilis 1 Icq 2026-04-16 N/A
ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.
CVE-1999-0926 1 Apache 1 Http Server 2026-04-16 N/A
Apache allows remote attackers to conduct a denial of service via a large number of MIME headers.
CVE-1999-0927 1 Gordano 1 Ntmail 2026-04-16 N/A
NTMail allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2005-1211 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Buffer overflow in the PNG image rendering component of Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted PNG file.
CVE-2005-2647 1 Xerox 7 Document Centre 265, Document Centre 332, Document Centre 340 and 4 more 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitrary web script or HTML and modify web pages via unknown vectors.
CVE-2005-1212 1 Microsoft 7 Windows 2000, Windows 2000 Terminal Services, Windows 2003 Server and 4 more 2026-04-16 N/A
Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.
CVE-2005-1213 1 Microsoft 1 Outlook Express 2026-04-16 N/A
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
CVE-2005-2648 1 W-agora 1 W-agora 2026-04-16 N/A
Directory traversal vulnerability in index.php in W-Agora 4.2.0 and earlier allows remote attackers to read arbitrary files via the site parameter.