Search Results (362815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2004-1466 1 Gallery Project 1 Gallery 2026-04-16 N/A
The set_time_limit function in Gallery before 1.4.4_p2 deletes non-image files in a temporary directory every 30 seconds after they have been uploaded using save_photos.php, which allows remote attackers to upload and execute execute arbitrary scripts before they are deleted, if the temporary directory is under the web root.
CVE-2004-1467 1 Egroupware 1 Egroupware 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.0.00.003 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) date or search text field in the calendar module, (2) Field parameter, Filter parameter, QField parameter, Start parameter or Search field in the address module, (3) Subject field in the message module or (4) Subject field in the Ticket module.
CVE-1999-0050 1 Hp 1 Hp-ux 2026-04-16 N/A
Buffer overflow in HP-UX newgrp program.
CVE-1999-0078 10 Bsdi, Freebsd, Hp and 7 more 11 Bsd Os, Freebsd, Hp-ux and 8 more 2026-04-16 N/A
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
CVE-2004-1472 1 Symantec 10 Firewall Vpn Appliance 100, Firewall Vpn Appliance 200, Firewall Vpn Appliance 200r and 7 more 2026-04-16 N/A
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 allow remote attackers to cause a denial of service (device freeze) via a fast UDP port scan on the WAN interface.
CVE-1999-0127 1 Hp 1 Hp-ux 2026-04-16 N/A
swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access.
CVE-2006-2062 1 Leadhound Network 2 Leadhound Full, Leadhound Lite 2026-04-16 N/A
Multiple SQL injection vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to execute arbitrary SQL commands via the (1) banner parameter in agent_links.pl; the offset parameter in (2) agent_links.pl, (3) agent_transactions.pl, (4) agent_subaffiliates.pl, and (5) agent_summary.pl; the camp_id parameter in (6) agent_transactions_csv.pl, (7) agent_subaffiliates.pl, and (8) agent_camp_det.pl; the (9) login parameter in agent_commission_statement.pl; the logged parameter in (10) agent_commission_statement.pl and (11) agent_camp_det.pl; the (12) agent_id parameter in agent_commission_statement.pl; and the (13) sub parameter in unspecified files.
CVE-1999-0132 2 Hp, Sun 3 Hp-ux, Solaris, Sunos 2026-04-16 N/A
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.
CVE-1999-0246 1 Hp 1 Hp-ux 2026-04-16 N/A
HP Remote Watch allows a remote user to gain root access.
CVE-1999-0280 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Remote command execution in Microsoft Internet Explorer using .lnk and .url files.
CVE-1999-0308 1 Hp 1 Hp-ux 2026-04-16 N/A
HP-UX gwind program allows users to modify arbitrary files.
CVE-1999-0311 1 Hp 1 Hp-ux 2026-04-16 N/A
fpkg2swpk in HP-UX allows local users to gain root access.
CVE-1999-0326 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in HP-UX mediainit program.
CVE-1999-1089 1 Hp 1 Hp-ux 2026-04-16 N/A
Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.
CVE-1999-1115 1 Hp 1 Apollo Domain Os 2026-04-16 N/A
Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related to the Korn Shell (ksh).
CVE-1999-1134 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066.
CVE-1999-1213 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service.
CVE-1999-1239 1 Hp 1 Hp-ux 2026-04-16 N/A
HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so.
CVE-1999-1251 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of service.
CVE-2000-0059 1 Php 1 Php 2026-04-16 N/A
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.