Export limit exceeded: 29948 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29948 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-4580 | 1 Day | 1 Communique | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Day Communique 4 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search. | ||||
| CVE-2005-4579 | 1 Hitachi | 1 Business Logic | 2026-04-16 | N/A |
| Multiple HTTP response splitting vulnerabilities in Hitachi Business Logic - Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to inject arbitrary HTTP headers via unknown attack vectors in an unspecified input form. | ||||
| CVE-2005-4578 | 1 Hitachi | 1 Business Logic | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in Hitachi Business Logic - Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to execute arbitrary SQL commands via unknown attack vectors in an unspecified input form. | ||||
| CVE-2005-4577 | 1 Hitachi | 1 Business Logic | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Business Logic - Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors in an unspecified input form. | ||||
| CVE-2005-4576 | 1 Fatwire | 1 Updateengine | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in the UpdateEngine program in Fatwire UpdateEngine 6.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) COUNTRYNAME, (2) EMAIL, and (3) FUELAP_TEMPLATENAME parameters. | ||||
| CVE-2005-4575 | 1 Paperthin | 1 Commonspot Content Server | 2026-04-16 | N/A |
| PaperThin CommonSpot Content Server 4.5 and earlier allow remote attackers to obtain sensitive information via an invalid errmsg parameter to loader.cfm with a url parameter set to email-login-info.cfm, which leaks the full pathname in the resulting error message. | ||||
| CVE-2005-4574 | 1 Paperthin | 1 Commonspot Content Server | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in loader.cfm in PaperThin CommonSpot Content Server 4.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the bNewWindow parameter. | ||||
| CVE-1999-1447 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code that contains a long CLASSID parameter in an OBJECT tag. | ||||
| CVE-1999-0969 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork. | ||||
| CVE-1999-0779 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Denial of service in HP-UX SharedX recserv program. | ||||
| CVE-1999-0570 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| Windows NT is not using a password filter utility, e.g. PASSFILT.DLL. | ||||
| CVE-1999-0216 | 3 Gnu, Hp, Linux | 3 Inet, Hp-ux, Linux Kernel | 2026-04-16 | N/A |
| Denial of service of inetd on Linux through SYN and RST packets. | ||||
| CVE-1999-0057 | 5 Eric Allman, Freebsd, Hp and 2 more | 7 Vacation, Freebsd, Hp-ux and 4 more | 2026-04-16 | N/A |
| Vacation program allows command execution by remote users through a sendmail command. | ||||
| CVE-1999-0015 | 4 Hp, Microsoft, Netbsd and 1 more | 5 Hp-ux, Windows 95, Windows Nt and 2 more | 2026-04-16 | N/A |
| Teardrop IP denial of service. | ||||
| CVE-2005-4629 | 1 Smbcms | 1 Smbcms | 2026-04-16 | N/A |
| SQL injection vulnerability in SMBCMS 2.1 allows remote attackers to execute arbitrary SQL commands via unspecified search parameters. | ||||
| CVE-2005-4630 | 1 Clientexec | 1 Clientexec | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in ClientExec 2.3 allows remote attackers to execute arbitrary SQL commands via the (1) billshowid, (2) billdetailid, (3) fuse, and (4) frmClientID parameters. | ||||
| CVE-2005-4631 | 1 Ryan Lath | 1 Zina | 2026-04-16 | N/A |
| SQL injection vulnerability in index.php in Zina 0.12.07 and earlier allows remote attackers to execute arbitrary SQL commands via the p parameter. | ||||
| CVE-2006-0108 | 1 Idea Development Id Oy | 1 Timecan Cms | 2026-04-16 | N/A |
| SQL injection vulnerability in mcl_login.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the original source, it cannot be determined if this is the same issue as identified by CVE-2006-0107. | ||||
| CVE-2006-0109 | 1 Modular Merchant | 1 Shopping Cart | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in category.php in Modular Merchant Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the cat parameter. | ||||
| CVE-2006-0110 | 1 Javier Suarez Sanz | 1 Foro Domus | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary web script via the email parameter. | ||||