Total
29914 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-4956 | 1 Neosys | 1 Neon Webmail | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in the updateuser servlet in Neon WebMail for Java before 5.08 allows remote attackers to inject arbitrary web script or HTML via the in_name parameter, as used by the Name field. | ||||
| CVE-1999-0731 | 1 Caldera | 1 Openlinux | 2026-04-16 | N/A |
| The KDE klock program allows local users to unlock a session using malformed input. | ||||
| CVE-2006-4967 | 1 Nextage | 1 Nextage Shopping Cart | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in NextAge Cart allow remote attackers to inject arbitrary web script or HTML via (1) the CatId parameter in a product category action in index.php or (2) the SearchWd parameter in an index search action in index.php. | ||||
| CVE-1999-0734 | 1 Cisco | 1 Ciscosecure | 2026-04-16 | N/A |
| A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication. | ||||
| CVE-1999-0739 | 1 Microsoft | 1 Internet Information Server | 2026-04-16 | N/A |
| The codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. | ||||
| CVE-2002-1035 | 1 Omnicron | 1 Omnihttpd | 2026-04-16 | N/A |
| Omnicron OmniHTTPd 2.09 allows remote attackers to cause a denial of service (crash) via an HTTP request with a long, malformed HTTP 1version number. | ||||
| CVE-1999-0750 | 1 Microsoft | 1 Hotmail | 2026-04-16 | N/A |
| Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account. | ||||
| CVE-1999-0756 | 1 Allaire | 1 Coldfusion Server | 2026-04-16 | N/A |
| ColdFusion Administrator with Advanced Security enabled allows remote users to stop the ColdFusion server via the Start/Stop utility. | ||||
| CVE-2002-1043 | 1 Ultrafunk | 1 Popcorn | 2026-04-16 | N/A |
| Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) via a malformed Subject ("\t\t"). | ||||
| CVE-2005-3393 | 1 Openvpn | 2 Openvpn, Openvpn Access Server | 2026-04-16 | N/A |
| Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option. | ||||
| CVE-2002-1065 | 1 T. Hauck | 1 Jana Web Server | 2026-04-16 | N/A |
| Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing. | ||||
| CVE-1999-0770 | 1 Checkpoint | 1 Firewall-1 | 2026-04-16 | N/A |
| Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems. | ||||
| CVE-1999-0779 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Denial of service in HP-UX SharedX recserv program. | ||||
| CVE-2002-1066 | 1 T. Hauck | 1 Jana Web Server | 2026-04-16 | N/A |
| Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command to the POP3 server, which exceeds the array limits and allows a buffer overflow attack. | ||||
| CVE-1999-0806 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| Buffer overflow in Solaris dtprintinfo program. | ||||
| CVE-2002-1089 | 1 Oracle | 2 Application Server, Reports | 2026-04-16 | N/A |
| rwcgi60 CGI program in Oracle Reports Server, by design, provides sensitive information such as the full pathname, which could enable remote attackers to use the information in additional attacks. | ||||
| CVE-1999-0821 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument. | ||||
| CVE-1999-0831 | 4 Cobalt, Debian, Sun and 1 more | 6 Qube, Debian Linux, Cobalt Raq and 3 more | 2026-04-16 | N/A |
| Denial of service in Linux syslogd via a large number of connections. | ||||
| CVE-2002-1097 | 1 Cisco | 2 Vpn 3000 Concentrator Series Software, Vpn 3002 Hardware Client | 2026-04-16 | N/A |
| Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.2, allows restricted administrators to obtain certificate passwords that are stored in plaintext in the HTML source code for Certificate Management pages. | ||||
| CVE-1999-0848 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2026-04-16 | N/A |
| Denial of service in BIND named via consuming more than "fdmax" file descriptors. | ||||